Govt asks app stores to remove BAT-BMS over e-rickshaw battery security
New Delhi, July 3
The Ministry of Electronics and Information Technology has directed Google Play Store and Apple App Store to remove the Chinese BAT-BMS mobile application after concerns emerged over its potential misuse to remotely disrupt the operation of e-rickshaws, sources said on Friday.
The decision comes after a series of videos circulated on social media allegedly showed individuals using the BAT-BMS app to connect to nearby e-rickshaws via Bluetooth and remotely switch off their battery systems while the vehicles were in motion.
The incidents have raised concerns over passenger safety as well as the security of battery management systems (BMS) used in low-cost electric vehicles.
The ministry took cognisance of the matter after the videos went viral and has initiated action to restrict public access to the application, according to them.
Moreover, the government is examining the broader cybersecurity implications of such vulnerabilities and is assessing further safeguards for connected battery systems used in electric vehicles.
The BAT-BMS app -- developed by Shenzhen Grenergy Technology -- designed as a companion application for Bluetooth-enabled lithium-ion batteries.
It enables battery owners to monitor parameters such as voltage, current, temperature, charging cycles and battery health, besides allowing them to control battery discharge functions.
Many e-rickshaws and electric two-wheelers sold in India use battery management systems that are shipped without password protection or continue to operate with factory-default credentials.
This makes it possible for anyone within Bluetooth range, typically around 10 to 15 metres to pair with the battery without the owner's knowledge and in some cases disconnect power remotely.
In addition, Delhi Transport Minister Pankaj Singh reportedly has said that while no formal written complaint had been received by the department, the issue had been brought to his notice by members of the public.
He said the Transport Department has been directed to verify the authenticity of the BAT-BMS application and examine the claims surrounding its use, according to NDTV.
— IANS
Reader Comments
As someone who relies on e-rickshaws daily in Bangalore, this is scary. The government should also mandate secure passwords for all e-vehicle batteries sold in India. Bluetooth range of 10-15 meters means anyone near a busy auto stand could cause havoc. At least they're being proactive for once! 🙏
Good move but this is just the tip of the iceberg. Our EV ecosystem is growing fast but cybersecurity standards are lagging behind. We need a national policy for battery management systems - not just banning apps after videos go viral. Prevention is better than cure, yaar. 🛡️
I work in EV tech and let me tell you - many Chinese BMS systems come with default passwords like '1234' or 'admin'. It's shocking that importers don't change them. Also, why isn't Bluetooth encryption mandatory? The govt should force all e-rickshaw batteries sold in India to be properly secured. This is public safety 101! 🚨
E-rickshaws are lifelines for millions in Indian cities but this exposes a huge vulnerability. I appreciate the quick response from MeitY - they banned the app within days. But we need to go further: mandatory security audits for all EV components, especially imported ones. Our Make in India push should include 'Secure in India' too! 🇮🇳
This is why we need better Made-in-India alternatives. Why are we still dependent on Chinese components for our EV revolution? The government should incentivize Indian startups to
We welcome thoughtful discussions from our readers. Please keep comments respectful and on-topic.