Jonas
Denis Laskov 🇮🇱Gone in 61 seconds.
The keys were left near the front door.
Cyberfuchs@it4sec how does this work? I thought there was some kind of movement sensor in the key fob, so it wouldn't send any signals when it lies on the shelf
@Cyberfuchs
Some models of key fobs transmit a signal constantly. In order for the car to open, the signal needs to be amplified and transmitted closer to the car, which is what the thieves do in the video.
Some models of key fobs transmit a signal constantly. In order for the car to open, the signal needs to be amplified and transmitted closer to the car, which is what the thieves do in the video.
Alexander Goeres 𒀯reminds me a little of the early attacks on landline telephones without cable attachted handhelds. where you could walk down a street with a handheld and easily find a base station this handheld would attach to ...
Andreas K@jabgoe2089 There is literally NO motivation for the car makers to design safe systems, as the law is mostly on their side, it's the car owners who get problems with insurance.
Courts are strongly inclined to believe corporate declarations that their systems are safe.
gunstick@it4sec @Cyberfuchs the car does not shut off when it's running and the key disappears?
generationX@generationX no. For that, the car would have to know the precise location of the traffic lights. Also it might block the whole street
@Cyberfuchs haha, I was thinking about speed==0.
Of course it can't know the location.😁
Mr. Teatime@gunstick
The car won't turn on gain once the thieves turn it off, though.
This means they can't just sell it to someone else. But they can still sell its parts, of course, and they can get it to a place where they have more time may have ways to crack the security systems properly (if they know how to)
@it4sec @Cyberfuchs
Dan Lyke@it4sec dang. My wife insisted that we store our keys in a Faraday bag, and I thought she was being paranoid, but....
Jeff Forcier
Doctor M. Popular@it4sec thanks for sharing this (and the more info in that twitter thread). What a fascinating hack. https://twitter.com/it4sec/status/1708903419300213168
@docpop thank you for your feedback!
Tito Swineflu@it4sec so are they scanning for the code from the keys near the door, then transferring that code to a device in the car? That's pretty amazing.
Duco@tito_swineflu @it4sec I would assume with opening the door the car sends a "key are you near?" signal. They probably use antenna to transmit the signal further and catch the answer from the key back to the car.
Keys today have protection that you can not randomly get a code and use that on the car, I think. They need to follow such a handshake protocol, so no one can easily duplicate the key. So instead (I guess) they extend the range of the signals.
Keys today have protection that you can not randomly get a code and use that on the car, I think. They need to follow such a handshake protocol, so no one can easily duplicate the key. So instead (I guess) they extend the range of the signals.
CCC Aachen@it4sec crazy how Keyless Gone is still a thing today.
Krizzzn@it4sec what will they do once they have the car? Are they able to clone the key from the car alone, or reflash the car to accept a new key?
Zlasha
Mrs BeanbagIn this particular case, I'm pretty sure it will go to parts and the rest to the scrap yard.
𝗌𝗆𝗈𝗄𝗎@krizzzn Most of the time they will just chop it for parts.
cultdev@it4sec i live somewhere robberies aren’t common at all, i have no idea what the heck i’m looking at
Jacket@it4sec You could hide the cables in a Halloween costume for extra stealth.
@jacket good idea! But please don’t give those guys hints, they adapt very quickly. :)
RiskyThinking
xs4me2
Dizzy@it4sec But wait... how can you drive out of range of the key? My car stops when you do this.
🔥torstein🔥@BubblegumYeti @it4sec Depends on the model I think. Some will sound an alarm inside the car, but allow you to drive a (shortish) distance (to avoid potential crashes if say your kid throws the keys out of the window while on the highway).
Dickon Hood@it4sec We need to make the manufacturers liable for this. These attacks have been known about for years -- plenty long enough to enact a fix -- and there's simply no excuse for them doing nothing.
CuriousMatter@dickon @it4sec I was just thinking that I've had a keyless push-button start car for 13 years, and I'm pretty sure I knew about this attack before I bought it. I assumed at some point, when cost allowed, they'd reduce the response time-out to limit the physical distance the signal could have traveled (distance bounding). I figured meanwhile, I'd live with the risk, I'm insured.
These days, my car has a strong theft deterrent: It's a 13yo sub-compact.
@CuriousMatter @it4sec Yeah, I think the main reason we're OK is that I drive an '07 reg, fairly beaten-up Golf, and t'other half's is a '13 reg Kia Cee'd with c. 100k mi on the clock.
But it's utterly disgraceful that the manufacturers have done nothing about this in well over a decade, and we all pay in higher insurance premiums as a result.
I mean, I'm not *surprised* -- their software practices are amazing for all the wrong reasons -- but that doesn't make it less of a disgrace.
Simon ZerafaLucky that an anti-terrorist squad didn't see that equipment.
Would give you pause that it's a suicide vest with unfortunate consiquences 🫤🤷♂️
Martin Seeger@it4sec Would probably work with my bike lock too (using https://mobil.abus.com/int/Consumer/Bicycle-locks/Folding-Locks/BORDO-One-6500A-110-black-bracket-SH). Luckily those locks are still so rare, they confuse thieves ....
🅺🅸🅼 🆂🅲🅷🆄🅻🆉:~$ ▓@it4sec Why the huge backpack and wire anteanna? It can be done with a keyfob size device these days (available for cheep on the internet). Must be an old video
Teri Yaki 🖌️🎹🚲💻@it4sec oh, a new kind of car sharing :-)
Die immer Lachende@it4sec that's another pint on my 'Don't like new cars' list.
My camera shoots fascistsThis and CAN attacks are a perfect illustration of "blue team has to be perfect every time, red team only needs to find one mistake." Until car manufacturers become liable for the thefts, they have little incentive to find and fix the vulnerabilities they've created. Being perfect is expensive.
Pro tip: drive an older car and put in a hidden fuel pump cut off switch. (I'm guessing that's probably too complicated in the modern motorized computers called cars.)
I recently crossed paths with an acquaintance in the parking lot who pointed to her new truck and excitedly told me how cool it was that she can control the entire thing with her phone... 😱🤦♂️
JCR 
I will never let auto companies stick their spyware in any car I own. It may not be possible to disable it in new vehicles, but an older ones it's often not difficult. In 2000-teens Tacomas for example the telematic transceiver is controlled by a single fuse that you can remove, or you can pull the dash off and take the unit out.
Squiggle@it4sec Did hoodie guy use an improvised antenna to hack the key fob to start the car for his accomplice car thief?
zem@it4sec
wtf! I thought those keys would send at least permanent status beacons but this really is crazy.
@Cryptomon
wtf! I thought those keys would send at least permanent status beacons but this really is crazy.
@Cryptomon
Ertain@it4sec Goddamn 😮
skry