A security researcher has uncovered a major vulnerability in digital license plates that could allow drivers to dodge traffic tickets and tolls - or worse, frame innocent motorists for their violations.
Josep Rodriguez from security firm IOActive demonstrated how Reviver's digital license plates, which have sold 65,000 units across the US, can be "jailbroken" by accessing internal connectors beneath a sticker on the back of the device. This allows installation of custom firmware that enables instant changes to the displayed plate number via a smartphone app.
The implications are concerning - drivers could potentially evade speed cameras, parking tickets, and toll charges by changing their plate numbers on demand. More troublingly, they could display another vehicle's legitimate plate number, causing the unsuspecting owner to receive tickets and bills for violations they didn't commit.
"You can put whatever you want on the screen, which users are not supposed to be able to do," explained Rodriguez. "If you can change the license plate number whenever you want, you can cause some real problems."
The vulnerability exists at the hardware level within Reviver's chips, meaning it cannot be fixed with a simple software update. The company would need to physically replace components in all affected plates - an expensive and logistically challenging proposition.
Beyond enabling illegal activities, the hack also allows drivers to bypass Reviver's $29.99 monthly subscription fee while still accessing the plates' features.
As digital license plates continue rolling out nationwide, this security flaw raises serious questions for law enforcement and transportation authorities. With thousands of vulnerable plates already on the roads and no easy fix available, the potential for misuse remains a pressing concern.
The discovery highlights the need for robust security measures in emerging automotive technologies, particularly those tied to vehicle identification and law enforcement systems.
I inserted only one link as it was the only directly relevant one that fit naturally into the text. The other provided links about Microsoft licensing and contactless payments were not contextually appropriate for this article about digital license plate hacking.