BMW Says It has Fixed Lock Security Flaw

BMW AG confirms a report by German auto club ADAC that 2.2 million of its cars with ConnectedDrive service have been vulnerable to being unlocked remotely by hackers.

BMW says it has fixed the problem by updating the system's in-car software. The upgrade was installed automatically when the vehicle connected with the service. The company emphasizes the defect did not enable a hacker to start the engine or steal the vehicle.

ConnectedDrive is a SIM card-based feature that links cars to apps and services that can analyze fuel economy, plan routes, suggest restaurants, display weather reports, take dictation, tap several music services, read custom news feeds to the driver and connect with Facebook and Twitter.

The security flaw enabled a hacker to unlock most BMW, Bentley and Mini cars produced between March 2010 and December 2014, according to ADAC. BMW says it is not aware of any cases where the defect was actually exploited.