Connect with us


Hackers can use Bluetooth to unlock and steal some Teslas

Many other app-based car keys are also vulnerable.

Tesla badge on model 3 with full self-driving
Image: Kevin Raposo / KnowTechie

A cybersecurity researcher has shown that the keyless entry system used on Tesla vehicles and other cars isn’t as secure as expected. Using $100 worth of hardware and custom software, the researcher showed how a hacker could unlock the car and drive off.

The hack was developed by Sultan Qasim Khan, principal security consultant at the Manchester, UK-based security firm NCC Group. It leverages the Bluetooth Low Energy (BLE) protocol that powers the app-based, keyless entry system used by Tesla and other automakers.

The so-called relay attack needs the hacker to get a hardware device near the owner’s smartphone or key fob. This then sends signals back to a second device, plugged into a laptop near the car. In the case of Tesla, Model 3 and Model Y models are affected.

READ MORE: Google warns of new spyware threat to iOS and Android users

Tesla model x in rain
Image: Unsplash

READ MORE: Tim Hortons, a Canadian treasure, has been spying on everyone

Customized software on the laptop takes just ten seconds to unlock the car and get it ready to start. It’s a chilling reminder of just how vulnerable some of our security systems are.

Khan says he disclosed the hack to Tesla, but the company decided it wasn’t a significant risk. Kwikset Corp, which manufactures smart locks for various systems, is also affected.

Kwikset says that iPhone users should turn on two-factor authentication in the Kwikset app for home security systems to mitigate the risk. The company is planning an Android app update, as well.

READ MORE: A new exploit lets hackers unlock any Honda made since 2012

Earlier this year, security researcher David Colombo also found a way to hack Tesla. While he never disclosed his methods, he found he could control all kinds of features in the vehicles, from flashing the lights to opening windows or doors.

Have any thoughts on this? Let us know down below in the comments or carry the discussion over to our Twitter or Facebook.

Editors’ Recommendations:

Follow us on Flipboard, Google News, or Apple News

Maker, meme-r, and unabashed geek with nearly half a decade of blogging experience. If it runs on electricity (or even if it doesn't), Joe probably has one around his office somewhere. His hobbies include photography, animation, and hoarding Reddit gold.

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

More in Security