※ [本文轉錄自 Gossiping 看板 #1Rc3ZS10 ]
作者: doctorpi (Dr.Pi) 看板: Gossiping
標題: [新聞] 駭客可在幾秒內偷走特斯拉Model S
時間: Wed Sep 12 05:51:22 2018
1.媒體來源:
※ 例如蘋果日報、奇摩新聞
International Buisness Times
2.完整新聞標題:
※ 標題沒有寫出來 ---> 依照板規刪除文章
Tesla News: Hackers Discover Way To Clone Model S Key Fob?
3.完整新聞內文:
※ 社論特稿都不能貼! 違者刪除(政治類水桶3個月),貼廣告也會被刪除喔!
Electric car manufacturer Tesla, Inc. (TSLA) has dealt with its share of
scandals and controversies, some of which involved the company’s electric
vehicles and many of which did not. The latest problem came to light Monday,
when a group of researchers from Belgium’s KU Leuven University reported
that they had found a way to easily hack the Tesla Model S’s keyless
ignition, Wired reported.
Like many modern vehicles, the Model S is unlocked and started by a key fob
that sends an encrypted signal to the car to start it, rather than by
inserting and turning a key. KU Leuven’s team of hackers spent several
months trying to crack the system, and they were successful. After
reverse-engineering the keyless entry system, they were able to clone the key
fob signal in less than two seconds using around $600 worth of gear, per
Wired.
They also released a short video demonstration of the hypothetical car theft
process. Perhaps the most dangerous aspect of KU Leuven’s findings is that
the cloned key fob can be used more than once, allowing the hacker to
continue driving the Model S.
The good news for Model S owners is that Tesla was alerted to the security
crack more than a year ago. A recent update added the ability to lock the
Model S behind a four-digit PIN code, similar to unlocking a smartphone, as
an added measure of authentication. Aside from that, any Model S made after
June 2018 should be immune to the attack.
Model S owners who got their cars before June may want to turn on the PIN
code function to avoid potential car thefts. The key fob tech was designed by
a firm called Pektron, who made similar tech for auto manufacturers like
McLaren.
Keyless ignition has become more standard in cars in recent years, but it
does not come without flaws. Aside from hacking concerns like what KU Leuven
found, some car owners have actually died because they forgot to turn their
cars off. The engine kept running in enclosed spaces, like garages, which led
to carbon monoxide poisoning.
The security flaw in the Model S was caught and remedied before it became a
widespread issue, but it could be seen as another hurdle on Tesla’s path to
profitability. In recent months, the electric car manufacturer has dealt with
everything from PR scandals involving CEO Elon Musk to the departures of
multiple high-level executives.
4.完整新聞連結 (或短網址):
※ 當新聞連結過長時,需提供短網址方便網友點擊
https://goo.gl/fidXXH
5.備註:
※ 一個人一天只能張貼一則新聞,被刪或自刪也算額度內,3m超買ꐡ
33m超貼者水桶,請注意
小弟第一次在八卦發文,本來想用爆卦的但已經有許多外電新聞了不確定會不會違反版規
,這是強者我同事的研究成果,他們成功破解了特斯拉Model S的無線鑰匙系統,能在幾
秒內將40-bit的密鑰用暴力法破解,使用的系統也是可以攜帶型的,只靠行動電源就能驅
動,詳細可參考影片。
https://www.youtube.com/watch?v=aVlYuPzmJoY
他們去年就已通知特斯拉,讓他們有時間改善,前幾天有看到新聞有關要提供安全系統更
新,但看起來是由車主自行選擇要不要自費更換,所以未來應該還有很多車子能用相同方
式破解。另外這次主要出問題的是外包廠商,而使用他們系統的不只Tesla,有名的還包
括McLaren,對相關研究有興趣的朋友可以參考我們研究所的blog。
https://goo.gl/1htiVN
最後溫馨小提醒,影片中的車是自己家的,有任何研究成果也千萬不要隨便對路邊的車子
嘗試啦!
--
作者: doctorpi (Dr.Pi) 看板: Gossiping
標題: [新聞] 駭客可在幾秒內偷走特斯拉Model S
時間: Wed Sep 12 05:51:22 2018
1.媒體來源:
※ 例如蘋果日報、奇摩新聞
International Buisness Times
2.完整新聞標題:
※ 標題沒有寫出來 ---> 依照板規刪除文章
Tesla News: Hackers Discover Way To Clone Model S Key Fob?
3.完整新聞內文:
※ 社論特稿都不能貼! 違者刪除(政治類水桶3個月),貼廣告也會被刪除喔!
Electric car manufacturer Tesla, Inc. (TSLA) has dealt with its share of
scandals and controversies, some of which involved the company’s electric
vehicles and many of which did not. The latest problem came to light Monday,
when a group of researchers from Belgium’s KU Leuven University reported
that they had found a way to easily hack the Tesla Model S’s keyless
ignition, Wired reported.
Like many modern vehicles, the Model S is unlocked and started by a key fob
that sends an encrypted signal to the car to start it, rather than by
inserting and turning a key. KU Leuven’s team of hackers spent several
months trying to crack the system, and they were successful. After
reverse-engineering the keyless entry system, they were able to clone the key
fob signal in less than two seconds using around $600 worth of gear, per
Wired.
They also released a short video demonstration of the hypothetical car theft
process. Perhaps the most dangerous aspect of KU Leuven’s findings is that
the cloned key fob can be used more than once, allowing the hacker to
continue driving the Model S.
The good news for Model S owners is that Tesla was alerted to the security
crack more than a year ago. A recent update added the ability to lock the
Model S behind a four-digit PIN code, similar to unlocking a smartphone, as
an added measure of authentication. Aside from that, any Model S made after
June 2018 should be immune to the attack.
Model S owners who got their cars before June may want to turn on the PIN
code function to avoid potential car thefts. The key fob tech was designed by
a firm called Pektron, who made similar tech for auto manufacturers like
McLaren.
Keyless ignition has become more standard in cars in recent years, but it
does not come without flaws. Aside from hacking concerns like what KU Leuven
found, some car owners have actually died because they forgot to turn their
cars off. The engine kept running in enclosed spaces, like garages, which led
to carbon monoxide poisoning.
The security flaw in the Model S was caught and remedied before it became a
widespread issue, but it could be seen as another hurdle on Tesla’s path to
profitability. In recent months, the electric car manufacturer has dealt with
everything from PR scandals involving CEO Elon Musk to the departures of
multiple high-level executives.
4.完整新聞連結 (或短網址):
※ 當新聞連結過長時,需提供短網址方便網友點擊
https://goo.gl/fidXXH
5.備註:
※ 一個人一天只能張貼一則新聞,被刪或自刪也算額度內,3m超買ꐡ
33m超貼者水桶,請注意
小弟第一次在八卦發文,本來想用爆卦的但已經有許多外電新聞了不確定會不會違反版規
,這是強者我同事的研究成果,他們成功破解了特斯拉Model S的無線鑰匙系統,能在幾
秒內將40-bit的密鑰用暴力法破解,使用的系統也是可以攜帶型的,只靠行動電源就能驅
動,詳細可參考影片。
https://www.youtube.com/watch?v=aVlYuPzmJoY
他們去年就已通知特斯拉,讓他們有時間改善,前幾天有看到新聞有關要提供安全系統更
新,但看起來是由車主自行選擇要不要自費更換,所以未來應該還有很多車子能用相同方
式破解。另外這次主要出問題的是外包廠商,而使用他們系統的不只Tesla,有名的還包
括McLaren,對相關研究有興趣的朋友可以參考我們研究所的blog。
https://goo.gl/1htiVN
最後溫馨小提醒,影片中的車是自己家的,有任何研究成果也千萬不要隨便對路邊的車子
嘗試啦!
--
All Comments