bmw-logo-on-wheel-cropped-300x223

BMW said no driving functions were compromised (Photo: BMW)

BMW responded quickly to a report of a potential security gap in the data transmissions to and from the carmaker's connected vehicles. The German premium car group said it had closed the security gap with "a new configuration."

The quick action by BMW underscores how serious the industry is taking data security, which is a growing concern as all cars are rapidly being equipped with systems that are always connected to the outside world.

The ADAC, Germany's largest automobile club, had discovered a potential security gap in BMW's ConnectedDrive systems. What the ADAC found was that the cars could be opened from the outside with the help of a cellphone. The club said it had run tests of several cars, which had confirmed its findings.

The data security problem affects around 2.2 million BMW, Mini and Rolls Royce vehicles. These have been equipped with ConnectedDrive technology since 2010.

BMW said it had carried out an update of the cars' systems automatically. It can do this because the vehicles all have SIM cards that automatically connect them to BMW group servers. Car owners could also call up the service configuration manually.

BMW stressed that group hardware was not affected by the breach and "access to functions relevant to driving was excluded at all times."