JANUARY 23, 2020 — Micromobility vehicles, such as e-scooters, zip in and out of traffic. In San Antonio alone, over 12,000 scooters are on the road. For this reason, micromobility is seen as an alleviating trend to help tackle traffic congestion.
However, new research out of UTSA finds e-scooters have risks beyond the perils of potential collisions. Computer science experts at UTSA have published the first review of the security and privacy risks posed by e-scooters and their related software services and applications.
“We were already investigating the risks posed by these micromobility vehicles to pedestrians’ safety. During that study, we also realized that besides significant safety concerns, this new transportation paradigm brings forth new cybersecurity and privacy risks as well,” noted Murtuza Jadliwala, an assistant professor in the Department of Computer Science who led this study.
—MURTUZA JADLIWALA, Assistant Professor of Computer Science
According to the review, which will soon appear in the proceedings of the 2nd ACM Workshop on Automotive and Aerial Vehicle Security (AutoSec 2020), hackers can cause a series of attacks, including eavesdropping on users and even spoof GPS systems to direct riders to unintended locations. Vendors of e-scooters can suffer denial-of-service attacks and data leaks.
“We’ve identified and outlined a variety of weak points or attack surfaces in the current ride-sharing, or micromobility, ecosystem that could potentially be exploited by malicious adversaries right from inferring the riders’ private data to causing economic losses to service providers and remotely controlling the vehicles’ behavior and operation,” said Jadliwala.
Some e-scooter models communicate with the rider’s smartphone over a Bluetooth Low Energy channel. Someone with malicious intent could eavesdrop on these wireless channels and listen to data exchanges between the scooter and riders’ smartphone app by means of easily and cheaply accessible hardware and software tools such as Ubertooth and WireShark.
Those who sign up to use e-scooters also offer up a great deal of personal and sensitive data beyond just billing information. According to the study, providers automatically collect other analytics, such as location and individual vehicle information. This data can be pieced together to generate an individual profile that can even include a rider’s preferred route, personal interests, and home and work locations.
⇒ Explore research in the Security, Privacy, Trust and Ethics in Computing Lab at UTSA.
“Cities are experiencing explosive population growth. Micromobility promises to transport people in a more sustainable, faster and economical fashion,” added Jadliwala. “To ensure that this industry stays viable, companies should think not only about rider and pedestrian safety but also how to protect consumers and themselves from significant cybersecurity and privacy threats enabled by this new technology.”
This study was produced in UTSA’s Security, Privacy, Trust and Ethics in Computing Lab, which was also behind the recent publication on how smart bulbs can be hacked. The lab is dedicated to examining privacy and security issues in ubiquitous devices.
The micromobility e-scooter analysis was conducted by Jadliwala alongside graduate students Nisha Vinayaga-Sureshkanth, Raveen Wijewickrama and postdoctoral fellow Anindya Maiti.
UTSA is ranked as one of the top 6 young universities in the nation, according to Times Higher Education. UTSA is also home to the National Security Collaboration Center, which is tasked with tackling the nation’s largest security threats.
Interested in wellbeing programs, events and resources? Every Wednesday at noon you can stop by virtually and ask any questions you may have about Student Health Services, Counseling and Mental Health Services, and the PEACE office.Virtual Event
Learn more about Omada Health, a free healthy living program available to eligible UTSELECT members. This will be a live webinar in honor of National Nutrition Month (March) and Diabetes Alert Day (March 23). Get your questions answered and find out if Omada is right for youVirtual Event
Join our Health Education team and our Relationship Advocate as we discuss all things Sexual Health, STIs, Healthy Relationships, and more! This is your chance to learn what wasn't taught in High School! You can even submit questions anonymously and we'll answer them.Virtual Event
Session for social scientists on how to identify and understand which programs within NSF and NIH fund social sciences, what reviewers are typically looking for, and common mistakes to avoid. The presenter will also cover how to identify private foundations that may be interested in funding your social science research.Virtual Event
Join our Health Educators as we go over a very brief and basic presentation over proper nutrition, reading food labels, and portion sizes.Virtual Event
Open to members of the LGBTQ in all stages of identity formation from questioning to integration who seek a safe place to discuss issues.Virtual Event
General Assembly is a time when all members and officers of SGA come together to discuss important issues regarding UTSA and finding solutions through legislation or initiatives. Important updates are regularly given by SGA officers, UTSA administrators, or special guests. Our meetings are open to the public and are held on a weekly basis.Virtual Event
The University of Texas at San Antonio is dedicated to the advancement of knowledge through research and discovery, teaching and learning, community engagement and public service. As an institution of access and excellence, UTSA embraces multicultural traditions and serves as a center for intellectual and creative resources as well as a catalyst for socioeconomic development and the commercialization of intellectual property - for Texas, the nation and the world.
To be a premier public research university, providing access to educational excellence and preparing citizen leaders for the global environment.
We encourage an environment of dialogue and discovery, where integrity, excellence, inclusiveness, respect, collaboration and innovation are fostered.
UTSA is a proud Hispanic Serving Institution (HSI) as designated by the U.S. Department of Education.
The University of Texas at San Antonio, a Hispanic Serving Institution situated in a global city that has been a crossroads of peoples and cultures for centuries, values diversity and inclusion in all aspects of university life. As an institution expressly founded to advance the education of Mexican Americans and other underserved communities, our university is committed to ending generations of discrimination and inequity. UTSA, a premier public research university, fosters academic excellence through a community of dialogue, discovery and innovation that embraces the uniqueness of each voice.