A group of researchers from NCC Group in the UK has demonstrated a new way to break into Tesla vehicles.
The researchers explain that the security vulnerability can be pinpointed to the Bluetooth Low Energy (BLE) technology that is used to enter Tesla vehicles. The technology allows the driver to be authenticated when their key fob or app comes within a certain proximity of the car. The current system already comes with various safeguards, but NCC Group researchers have developed a new tool that is capable of bypassing these safeguards and remotely unlocking vehicles.
In a recent blog post by Sultan Qasim Khan, a senior security consultant at NCC Group, it's explained the researchers were able to successfully remotely unlock a 2020 Tesla Model 3 using an iPhone 13 mini that was running an outdated version of the Tesla app. The researchers explain that the iPhone was placed 27 yards away from the car, and two "relaying devices" were placed between the iPhone and the car. Combining the tool developed by the researchers and the relaying devices, they were able to successfully unlock the Tesla from a decent distance.
Notably, Tesla's aren't the only type of car vulnerable to this kind of attack as the researchers point out that any vehicle that uses Bluetooth Low Energy for its keyless entry system may also possess the same vulnerability.
"Testing on a 2020 Tesla Model 3 running software v11.0 (2022.8.2) with an iPhone 13 mini running version 4.6.1-891 of the Tesla app, NCC Group was able to use this newly developed relay attack tool to unlock and operate the vehicle while the iPhone was outside the BLE range of the vehicle. In the test setup, the iPhone was placed on the top floor at the far end of a home, approximately 25 metres away from the vehicle, which was in the garage at ground level.
The phone-side relaying device was positioned in a separate room from the iPhone, approximately 7 metres away from the phone. The vehicle-side relaying device was able to unlock the vehicle when within placed within a radius of approximately 3 metres from the vehicle.
NCC Group has not tested this relay attack against a Model Y or in conjunction with the optional Tesla Model 3/Y BLE key fob. However, based on the similarity of the technologies used, NCC Group expects the same type of relay attack would be possible against these targets, given the use of similar technologies," wrote the researchers.
AMD Ryzen 9050 'Strix Halo' APU leak: 16 Zen5 CPU cores, RDNA 3.5 GPU, 32MB of MALL cache
Sabrent wants to enhance your PS5: get a FREE heatsink with your Rocket 4 SSD purchase
NVIDIA CEO Jensen Huang will deliver live keynote on June 2, just as Computex 2024 kicks off
Xbox hardware revenue tanks to lowest point of Xbox Series generation
Lenovo ThinkPad P1 Gen 7 laptop: world's first mobile AI workstation with LPCAMM2 memory
ACEMAGIC AD08 "Core i9 11900H" Mini PC Review
Lenovo ThinkPad X1 Carbon Gen 12 Review
ASUS ROG Swift Pro PG248QP Gaming Monitor Review - Frames, frames, and more frames
FlexiSpot C7B-Mesh Ergonomic Office Chair Review
Samsung G8 34-inch QD-OLED Gaming Monitor Review - 175Hz for $900
ASRock NUCBOX-155H Mini PC Review
NuPhy Air96 V2 Wireless Mechanical Keyboard Review
TEAM T-FORCE Siren DUO360 RGB Liquid CPU Cooler Review
AVerMedia Live Streamer ULTRA HD Review
AVerMedia Live Gamer 4K 2.1 Review
Building the Ultimate Home Entertainment Server with an ASUSTOR NAS and Viper Gaming NVMe SSDs
Everything you need to know about the latest ASUS NUC Mini PCs - NUC 14 Pro and ROG NUC
How to Overclock Your GPU and Boost Your PC Gaming with ASUS GPU Tweak III
ASUS's AMD Radeon RX 7000 Series GPU lineup has something for every gamer
ASUS OLED Premium Care defends the ROG Swift OLED PG32UCDM gaming monitor from burn-in