Government Launches Urgent Crackdown on Dangerous E-Rickshaw Remote Disabling Apps
IR SUMMARY — KEY POINTS
- The Indian government has officially ordered the removal of three specific Chinese battery management applications identified as BAT-BMS, Lossigy, and Epoch Li-ion.
- These applications were reportedly being exploited by individuals to remotely disable e-rickshaws while in traffic, creating significant safety risks for passengers and drivers.
- The Ministry of Electronics and IT has directed major digital platforms like Google and Apple to immediately delist these tools from their respective stores.
- According to officials, the primary vulnerability stems from low-cost battery packs that lack adequate password protection and feature permanently enabled Bluetooth connectivity protocols.
- The government is actively investigating the extent of the security breach while local transport authorities demand stricter regulations on imported battery hardware standards.
The rapid proliferation of electric mobility in Indian urban centers has hit a dangerous roadblock as authorities initiate a sweeping crackdown on unauthorized software tools. Reports indicate that malicious actors are exploiting legitimate battery management applications to remotely shut down e-rickshaws while they operate in busy traffic corridors. This alarming trend has prompted the Ministry of Electronics and IT to issue urgent directives to technology giants, ordering the immediate removal of several Chinese-developed applications that provide unauthorized access to vehicle power systems across the nation.
Unsecured Vehicle Connectivity Protocols
Unsecured Vehicle Connectivity Protocols
These applications, including BAT-BMS and Lossigy, were originally marketed as essential diagnostic tools for monitoring lithium-ion battery performance. Designed to track voltage, temperature, and cell health, these systems utilize Bluetooth connectivity to relay data to mobile devices. However, the design of these low-cost battery management systems often lacks basic security features like mandatory password protection. This architectural oversight allows any smartphone within a 15-meter range to scan for, pair with, and command the battery to cut power, effectively paralyzing the vehicle mid-transit.
The government has ordered the removal of three Chinese apps including BAT-BMS and Lossigy for enabling remote vehicle shutdowns.
Regulatory Intervention and Platform Enforcement
The impact of this exploit has been felt most acutely in the capital, where viral social media clips have documented the plight of stranded drivers. Content creators have been filmed intentionally triggering shutdowns, leaving e-rickshaws immobile in the middle of congested intersections. These incidents have not only disrupted traffic flow but have also caused significant financial hardship and safety concerns for daily commuters. Drivers like Naseem have reported total power failure while ferrying passengers, forcing them to physically push their heavy vehicles through dense traffic to reach safety.
Regulatory Intervention and Platform Enforcement
Safety Concerns and Infrastructure Integrity
In response to the growing public safety threat, IT secretary S. Krishnan confirmed that the government has formally intervened to mitigate further risks. While the directive to block these applications has been issued, the real-world application of such orders remains complex. Despite official mandates, some versions of these applications remained accessible on digital storefronts several days after the government notice, highlighting the challenges regulators face when enforcing compliance across global platform ecosystems that operate independently of local terrestrial jurisdiction and oversight mechanisms.
Malicious actors exploit Bluetooth connectivity on unsecured battery management systems to cut power to e-rickshaws within a 15-metre range.
The incident underscores a broader challenge regarding the influx of cheap, imported electronic components that dominate the informal electric vehicle sector in India. Experts argue that the integration of lithium-ion batteries into public transport requires much higher cybersecurity standards than currently enforced. The absence of robust hardware-level security is now viewed as a critical vulnerability that could be exploited for more than just petty pranks, raising questions about potential large-scale infrastructure interference if such remote access capabilities remain unpatched and widely available to the public.
Strengthening Future Regulatory Security Standards
Safety Concerns and Infrastructure Integrity
Delhi transport minister Pankaj Singh has categorized these events as a major security issue that demands a thorough investigation into the supply chain of imported battery systems. The state government is now coordinating with central agencies to determine if these applications contain hidden backdoor functionalities beyond their advertised diagnostic capabilities. This crackdown serves as a warning to both manufacturers and distributors that the state intends to prioritize the safety of public transit networks over the convenience of low-cost, unsecured digital diagnostic tools in the future.
Future policy efforts are likely to focus on implementing mandatory security certification for all power management electronics entering the domestic market. The government’s swift reaction suggests a pivot toward stricter oversight of the burgeoning EV sector to ensure that digital convenience does not translate into physical danger. As the investigation progresses, the industry expects new guidelines that will effectively force companies to secure their Bluetooth protocols, protecting both the vehicle operators and their passengers from future instances of malicious remote interference or dangerous digital pranks.
KEY TAKEAWAYS
Viral prank videos showing stranded drivers in Delhi have prompted an urgent nationwide investigation by the Ministry of Electronics and IT.
Security experts warn that the lack of basic password protection on low-cost battery packs poses a systemic threat to transport safety.