Ford takescybersecurityseriouslyand regularlyworkswith security researchers, suppliersand other vehicle manufacturers to protectour customers, productsand enterprise. 

Ford learned from a supplierthat a securityresearcher discovered a vulnerabilityintheWi-Fi software driver suppliedfor use intheSYNC 3 infotainment system available on some Ford and Lincoln vehicles.Immediately,and in collaboration with them,we began developing and validating measures to addressthe vulnerability.  

To date, we’veseenno evidence that this vulnerability has been exploited, which would likely requiresignificant expertiseand would also includebeingphysically near an individual vehicle that has its ignitionand Wi-Fi setting on. Our investigation also found that if this vulnerability wasexploited,however unlikely,it wouldnot affect the safety of vehicle occupants, sincethe infotainment system isfirewalled fromcontrols likesteering,throttlingand braking. 

Soon,Ford willissuea software patch online for download andinstallation via USB. In the interim, customers who are concerned about thevulnerability can simply turn offthe Wi-Fi functionalitythrough the SYNC 3infotainmentsystem’s Settings menu. Customers can also find out onlineif their vehiclesareequipped withSYNC3.

Securityresearchers who want to engage with and report vulnerabilities to Fordcan do sohere.