Australia’s cybersecurity landscape is undergoing significant scrutiny, particularly concerning the privacy of connected vehicles. Recent alerts from the Australian Security Intelligence Organisation (ASIO) have raised concerns for politicians and public officials about discussing sensitive information in cars.
Warning from ASIO on Vehicle Security
ASIO Deputy Director-General Lisa Alonso Love issued a crucial directive: avoid conversations involving classified material in any vehicle, regardless of whether it is connected. She emphasized that connected cars pose additional risks due to their data-collection capabilities.
Impact of Connected Cars
With seven models of Chinese electric vehicles now part of Australia’s federal vehicle fleet, approximately 30% of cars available to parliamentarians are connected vehicles. The rise in connected cars raises alarms beyond just electric models or those manufactured in China. Any vehicle linked to the internet can be a potential risk to privacy and national security.
Understanding Connected Vehicles
According to the Australian Signals Directorate, a connected vehicle is defined as any car that accesses the internet via an installed SIM card or a connected smartphone. A 2021 study by McKinsey indicated that at least 50% of cars on the road had internet connectivity, a figure projected to surge to 95% by 2030.
Data Collection in Connected Vehicles
Connected cars are equipped with numerous sensors, capable of generating 1 to 2 terabytes of raw data daily. This data can range from vehicle performance metrics to precise geolocation. Specifics of the data collected include:
- Infotainment usage
- Seatbelt usage
- Driving speed and patterns
- Driver fatigue indicators
Moreover, these vehicles may log data from Bluetooth connections, which can encompass personal information such as contacts and calendars. Alarmingly, privacy issues extend to passengers, with drivers mandated to inform them about data collection practices.
Concerns Over Data Misuse
A 2023 report by Mozilla highlighted that no vehicle it reviewed met privacy standards. Manufacturers often utilize collected data for product development and may sell it to affiliates, raising ethical concerns. In a notable incident, Tesla employees shared invasive recordings from customers’ vehicles, reinforcing worries about data security.
Protecting Yourself from Data Collection
To safeguard personal information, consumers should adopt the following strategies:
- Examine the manufacturer’s privacy agreements thoroughly.
- Visit vehicleprivacyreport.com to understand what data your car collects.
- Consider disabling any manufacturer-installed SIM card in data-enabled cars.
- Use the vehicle’s application or infotainment system to manage data collection settings.
- If you sell your vehicle, perform a factory reset to delete all stored data.
As the prevalence of connected cars rises, understanding and managing privacy risks has never been more critical for consumers. By taking proactive measures, drivers can enhance their security and protect their personal information on the road.
