You are reading a single comment by @lynx and its replies.
Click here to read the full conversation.
-
I've got to enter a pin code to drive the car away
Have had cars with immobilisers like that.
But then tesla have been hacked.
lynx-
But then tesla have been hacked.
That's a very broad statement. As far as I'm aware, no Tesla has every been hacked to allow driving functionality.
Two hacks (both patched now) allowed access to the car:
- Key fob vulnerability in Model X - required an ECU from another Tesla Model X, physical access to the car and a key fob. Never worked with any other Tesla model and was patched before the security researcher released the hack to the public.
- Zero click exploit which allowed control of the infotainment (including unlocking of car but not driving). Patched in October last year
Both of these would have been useless if PIN to drive was enabled anyway and both are patched.
- Key fob vulnerability in Model X - required an ECU from another Tesla Model X, physical access to the car and a key fob. Never worked with any other Tesla model and was patched before the security researcher released the hack to the public.
Soul
I would bet on a repeater attack but not sure how they would pick up the signal of the key in the flat...
New cars are doing a few things to combat them, but not fast enough. BMW keys (and a few others) now stop broadcasting their signal after 30 seconds of no movement meaning they're inactive once hung up or in a bowl etc. JLR now use UWB which allows the car to know exactly where the key is which removes the possibility of a relay attack.
Tesla go one further - I've got to enter a pin code to drive the car away. If you don't know that, you're not going anywhere.
Hopefully the next thing you pick up has one of the above.