Credential Access

Attackers intercepting and potentially altering communications between two vehicle components or systems. This can lead to unauthorized access or manipulation of sensitive data, such as authentication credentials or command signals, compromising the integrity and security of the entire vehicle system.

Adversaries attempt to crack passwords, credentials, and encryption keys through trial and error. The attackers try multiple usernames, passwords, tokens and test a variety of combinations until they gain access to vehicles.

Input capture is a technique that can intercept user input. The malware can pretend to be a legitimate keyboard app. The data entered, such as login information, can be intercepted.

An attacker can intercept SMS messages sent or received from the vehicle. Through this technique, important information can be obtained. SMS is used for multi factor authentication.

By sniffing a network, an Adversaries can learn more about the vehicle architecture, individual components and their functionality. By sniffing, he can obtain confidential data and access data that will help him to achieve his goals.

Attackers extract authentication credentials, like passwords or tokens, directly from the OS. This could grant unauthorized access to critical systems or software components.

Exploiting credentials that are inadequately protected or stored, such as plaintext passwords in vehicle software or rail control systems, allowing unauthorized system access.

 Attackers target vulnerabilities in the TEE . In vehicles, exploiting TEE can compromise security features designed to protect sensitive data or operations.