Counter for the pranksters using BAT-BMS a monitoring tool to leave the E-Rickshaw ppl in misery.
Need help from the developer & security community.
past some days khuch chutiye log BAT-BMS app use karke Bluetooth range me khadi e-rickshaws ko randomly disable kar rahe hain. Drivers ki daily earning isi par depend karti hai.
Examples:
https://www.instagram.com/p/DaQqvJgS3V-/
https://www.instagram.com/p/DaSQsRQImui/
https://www.instagram.com/p/DaP619hS3FN/
I have been looking into BAT-BMS code. These are current finding:
No cloud/backend, sab kuch local BLE par hota hai. (yeah this was obv ig but still worth mentioning)
Critical commands effectively unauthenticated.
Keypad phone use karne wale drivers ke liye "recovery app" bhi practical solution nahi hai.
I am trying to find a practical way to secure or recover deployed batteries without firmware changes, but so far we haven’t found anything solid.
If anyone has:
- Access to BAT-BMS/JBD battery hardware,
- Experience with firmware reverse engineering,
- Knowledge of BLE/BMS security,
please share your suggestions or insights.
Maybe together we can find a practical mitigation or recovery method.
This will likely require involvement from the Indian Government, CERT-In, and battery manufacturers, since the issue is not just with the app but with the deployed ecosystem.
Open to ideas. If we can find something practical that helps existing e-rickshaw drivers, it would have a huge impact.
Current constrains:
- Most drivers have keypad phone.
- Calling a mechanic nearby will use their whole day earning.