this post was submitted on 26 Feb 2024
506 points (100.0% liked)

Technology

69156 readers
2852 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
506
Revealed: car industry was warned keyless vehicles vulnerable to theft a decade ago (www.theguardian.com)
submitted 1 year ago by [email protected] to c/[email protected]
121 comments fedilink hide all child comments
 

Experts ​alerted motor trade to security risks of ‘smart key’ systems which have now fuelled highest level of car thefts for a decade.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 4 points 1 year ago (3 children)

No shit.

I mean not to side with the car industry, and not to dog on non-tech folks, but if you bought a push to start engine that doesn't require a key...

...

Like how do you think it works?! You couldn't have thought it was very different from your TV remote, and everyone knows universal remotes exist. In glad there's so much talk about moving away from passwords and over to physical security keys for computers.

[–] [email protected] 19 points 1 year ago (1 children)

Like how do you think it works?!

Rolling codes...

This article is stupid, the reason Kias and Hyundai are being stolen, is they lack an immobilizer.

So you break the window, crack open the steering column, and the part you turn conveniently is the same size as a USB plugin.

It's acting like people are hijacking codes, because the author has no idea what they're talking about about.

[–] [email protected] 6 points 1 year ago (2 children)

I'm not sure about what the article is referencing, which is probably a little more exotic, but relay attacks are very common against keyless cars. Keyless cars are constantly pinging for their matching fob. A relay attack just involves a repeater antenna held outside the car that repeats the signal between the car and the fob inside the house. Since many people leave the fob near the front of the house, it works and allows thieves to enter and start the car. Canada has has a big problem with car thieves using relay attacks to then drive cars into shipping containers and then sell them overseas.

[–] [email protected] 7 points 1 year ago (1 children)

Maybe you should read the article?

If you did, you'd probably be able to see the author has no idea what's going on.

Like, the international crime ring that you're talking about that gets cars halfway around the globe in a few weeks?

That happens, but it's not why so many Kias and Hyundai are being stolen thousands of miles from a coast

[–] [email protected] 5 points 1 year ago

I did read the article. I'm unfamiliar with the "hacking" tools or methods they mention given they use terms like emulator. I was simply sharing one wireless attack that is common in certain areas and why.

[–] [email protected] 1 points 1 year ago (1 children)

Don you have a good article discussing how this communication from car to key fob works?

Every fob like this that I've seen isn't effective unless the key is close to the car (inches), because it uses a no-power system in the key fob, similar to a card reader (so no battery required in the fob to unlock car and start engine, once in close proximity). I've tested this on a few cars by removing the battery in the key fob.

Other functions (door locks, remote start etc), seem to be provided by conventional key fob electronics.

I'm sure there are several different ways this is accomplished, so any insight would be useful.

Thanks!

[–] [email protected] 2 points 1 year ago* (last edited 1 year ago)

Hey, sorry it took so long to see your question. Here is a paper (PDF) on the subject with diagrams.

https://www.research-collection.ethz.ch/bitstream/handle/20.500.11850/42365/eth-4572-01.pdf

The link is composed of two parts, the emitter and the receiver. The emitter captures the LF signal and up-converts it to 2.5 GHz. The obtained 2.5 GHz signal is then amplified and transmitted over the air. The receiver part of the link receives this signal and down-converts it to obtain the original LF signal. This LF signal is then amplified again and sent to a loop LF antenna which reproduces the signal that was emitted by the car in its integrity.

Edit: and here is a times article that covers the problem in one area. https://www.nytimes.com/2024/02/24/world/canada/toronto-car-theft-epidemic.html

[–] [email protected] 13 points 1 year ago

You managed to pack an impressive amount of ignorance into this one comment.

[–] [email protected] 6 points 1 year ago

Show me a car today without keyless.

They've all been going that way for years. Last car I bought (two years ago, and it was a 2016), I couldn't find any equivalent vehicle using a key.

And no, I'm not buying some junk just because it uses a key. I buy cars that I know I can keep running forever, and in that category they're all keyless today.