Owners of one Tesla model should maybe stop relying on Sororityjust their key fob to unlock their car.
Researchers at Belgium university KU Leuven have reported that they've again successfully bypassed the keyless entry system of a Tesla Model S.
The team first announced their ability to unlock a Model S with a cloned key fob last September. But, on Tuesday, the university's Lennert Wouters presented evidence that they had managed to exploit a bug that bypassed Tesla's patch of that initial weakness, again allowing access to a locked Model S.
According to Wouters, it's a configuration bug in the encryption of the key fob, which is produced by electronics company Pektron, that would allow a hacker to crack the code by breaking only a little bit more sweat than previously required.
Reports Wired:
Despite Tesla and Pektron's upgrade from easily broken 40-bit encryption in the previous versions to far more secure 80-bit encryption in the newer key fobs—a doubling of the key length that ought to have made cracking the encryption about a trillion times harder—the bug allows hackers to reduce the problem to simply cracking two 40-bit keys. That shortcut makes finding the key only twice as hard as before.
Tesla told Wiredthat there's no evidence that anyone has successfully used this hack to steal a Model S (the hack doesn't affect other models since they use different key fobs). The company has already rolled out an easy-to-implement software update that fixes the issue and wirelessly updates the key fob in just a few minutes.
A spokesperson for Tesla told Mashable via email:
“While nothing can prevent against all vehicle thefts, Tesla has deployed several security enhancements, such as PIN to Drive, that makes them much less likely to occur. Even though we are not aware of a single customer ever affected by the reported issue, and enabling PIN to Drive already prevents this from occurring, we’ve begun to release an over-the-air software update (part of 2019.32) that addresses this researcher’s findings and allows certain Model S owners to update their key fobs inside their car in less than 2 minutes. We believe that neither of these options would be possible for any other automaker to release to existing owners, given our unique ability to roll out over-the-air updates that improve the functionality and security of our cars and key fobs.”
Additionally, Tesla's PIN-code-to-drive feature, once enabled by the driver, can prevent this sort of theft from occurring by allowing the driver to set a four-digit code that must be entered before the car can be driven.
SEE ALSO: Walmart sues Tesla over solar panel firesIt's not the first time a Tesla has been at the center of fob vulnerabilities. A video that circulated in the fall of 2018 purports to show a thief using a relay attack to steal a Model S. As we reported then, the thieves amplified "the signal from the car owner's key fob (located inside his home) in order to trick the vehicle into thinking the fob was present."
And yet another video claiming to show a similar relay attack theft was shared by Business Insiderearlier this month.
To be fair, as Jalopnik notes, this sort of relay attack isn't unique to Tesla; it's a vulnerability that affects just about any car that utilizes a key fob. Our own Jack Morse showed you howto protect your car from such a relay attack back in 2017.
Tesla's popularity and name-recognition just brings more attention even as the Model S is one of the least-stolen cars, according to one study. Disabling Tesla's "passive entry" feature should prevent such a relay attack and its Sentry Mode offers another layer of security.
And, like the other theft attempts, these can be prevented by the added protection layer that comes with the PIN-to-drive feature which you should definitely enable, lest you allow your really, really expensive new ride to fall prey to some wily thieves.
UPDATE: Aug. 28, 2019, 1:55 p.m. EDT Updated to include a statement from a Tesla spokesperson, clarifying the affected models, and providing additional information about Tesla security.
Topics Tesla
Yes, that was Ke Huy Quan on the phone in 'The White Lotus' Season 3Some UFOs may be hidden from our national leadersAn anglerfish’s search for the sun goes viral, but science has a different storyYes, that was Ke Huy Quan on the phone in 'The White Lotus' Season 3Where to buy the best AI laptops from CES 2025iPhone 16e's C1 chip is a big deal for future iPhones, tooBest fitness deal: Save 41% on the Sunny Health & Fitness rowing machineBest Garmin deal: Garmin Instinct 2 for under $200Best Samsung Galaxy Buds 3 Pro deal: Get them for $125.99 at AmazonLG StanbyMe portable monitor: Get it for $896.99Black Girls Code is more important than everMagSafe cases for iPhone 16e: Save 50% at Best Buy'Severance' Season 2, episode 6: What's with those documents Mr. Drummond finds?Free Pokémon trading card event: How to get free Pikachu promo card on Feb. 22MapQuest is letting you name the Gulf of Mexico whatever you wantBest robot vacuum deal: Save $300 on Shark Robot Vacuum and MopAfghanistan vs. South Africa 2025 livestream: Watch ICC Champions Trophy for freeNYT Connections Sports Edition hints and answers for February 22: Tips to solve Connections #152NYT Connections Sports Edition hints and answers for February 23: Tips to solve Connections #153NYT Strands hints, answers for February 22 Spike Lee's 'BlacKkKlansman' gets its first trailer: Watch A reminder that you should definitely stay in your car while driving through a safari park Samsung's OLED technology brings laptop visuals up to speed Eurovision cancels Chinese broadcast following LGBTQ censorship Apple Music Voice is cheap enough to make you tolerate Siri Celebs are taking to Twitter to wish moms a happy Mother's Day Steve Carell shares why he loved playing Michael Scott on 'The Office' Here are the most popular masturbation searches on Pornhub Kelly doesn't want unskilled immigrants, just like his ancestors Lego drops super Sonic the Hedgehog Green Hill Zone set How to track if someone opens your email This woman could be the first Native American governor in US history The best livestreaming products of the year Adventurous tourist got catfished by a glamorous picture of a hotel pool How 'Station Eleven's hair department created the perfect apocalyptic look Amazon, Google, Microsoft and more have pulled out of CES 2022 How to set up a Disney+ 'GroupWatch' party All the puzzling things that happen to your body when you masturbate, explained by science How to use voice How to unlock TikTok's secret emoji codes
2.86s , 10131.4765625 kb
Copyright © 2025 Powered by 【Sorority】,Prosperous Times Information Network