Posted on 08/12/2014 10:12:12 AM PDT by dennisw
Sophisticated criminals are able to reprogramme blank key fobs to start cars
This was not an ordinary car theft but car hacking a worrying new sort of crime which sees thieves use a hand-held electronic device to exploit a glitch in the keyless ignition systems used in most top-end vehicles.
Over the past few years, tens of thousands of wealthy owners of keyless BMWs, Range Rovers and Audis have become victims.
All recent BMWs didnt come with a traditional ignition key, but with a plastic fob containing a computer chip and security code.
When the fob is placed in a slot on the dashboard, the code is detected by the cars central computer, allowing the driver to start the engine at the press of a button.
In some models, you dont even have to put the fob into the dashboard slot: simply having it in your pocket or handbag will do the trick.
Keyless cars are supposed to be convenient and more secure. In practice, though, they are anything but.
Last month, police in Londons Kensington and Chelsea warned owners that their keyless ignition systems were vulnerable to theft.
For enterprising criminals, it didnt take long to find a way of exploiting the technology of keyless cars.
When you buy a car fitted with this technology, you are issued with a keyless ignition fob programmed by the manufacturer with a unique 40-digit code. Place the fob on the dashboard, or just climb into the car with it, and the cars onboard computer will detect the code. If it matches the one in its memory, the driver is allowed to start the car.
However, the computer is capable of doing more than just checking the code. It can also re-progamme a blank fob with a new code.
(Excerpt) Read more at dailymail.co.uk ...
I've often wondered about what it it took to jam the key fob radio transmissions.
Given my experience with “expensive” German cars, I can easily believe that their electronics engineers got degrees on sociology.
(Not that the other manufacturers are much better.)
As usual, getting your tech news from the newspaper leave out a few details:
http://www.complex.com/sports/2012/07/thieves-can-reprogram-bmw-key-fobs-on-the-spot
What is the World’s Most Hackable Car?
http://www.ibtimes.co.uk/what-worlds-most-hackable-car-1460758
Security Experts Identify 20 Most Hackable Cars
http://www.pcmag.com/article2/0,2817,2462209,00.asp
How hackable is your car?
http://www.stuff.co.nz/motoring/news/10371005/How-hackable-is-your-car
Tesla Electric Cars HACKED by Chinese! Remotely Takeover Locks, Horn, Headlights
https://www.youtube.com/watch?v=WyFjGVodG1g
Car Hacking - Remote Control Murder of Michael Hastings
https://www.youtube.com/watch?v=BiD-x07iUGU
Forbes Demonstrates “Car Hacking” the Michael Hastings Murder Method
https://www.youtube.com/watch?v=1CpPAjVh3dM
Fox News Covers Car Hacking Conspiracy
https://www.youtube.com/watch?v=NfwO8BIpkDs
“I’ve often wondered about what it it took to jam the key fob radio transmissions.”
I’ve often wondered about the probability that among all the millions of automobile ignition/door keys, there are no duplicates. Very hard to believe.
There always were duplicates, even with the old style plain keys.
I remember reading a news story a few years ago where a couple went to a parking lot, open up a car, drove off and soon realized they were in the wrong car....................
There was a play on that in a business law class I took a long time ago. Having an automotive background helped me getting the correct answer.
It seems like there were only a few thousand variations on old style car keys.
So, new cars could be made more secure by adding "something you know (PIN)" to the "something you have (fob)". New car owner programs PIN code (ours is six digits) upon delivery. The car will now only start with both the fob and PIN. If you need to have someone else park it, use a system-generated, limited-use, throw-away number.
>> Given my experience with expensive German cars, I can easily believe that their electronics engineers got degrees on sociology. <<
BWAHAHAHAH!!!
You want a nightmare? Try a “cheap” German car like the VW my wife had when I met her. Countless engineering decisions that made you want to smack the engineers, “WHAT WERE YOU THINKING?!!!”
There are, and I've seen stories on them. There are only so many potential key combos. It's worse when the key to open the door also operates the ignition.
That is referred to as “two step authentication”.
Dealers used to have “Master” sets.
I remember in the early 1980’s my Mom once got into the wrong car, and started it, using her key. The old man in the back was rather surprised.
some cars require all current key fobs present to program a new one. they also limit how many fobs you can have.
Then the thief will generate one of those and use it.
Not if it's generated by the vehicle's security system as you hand it over. No code-rolling allowed. Basically, if the next PIN entered doesn't match what the car just generated, it shuts down until the correct owner PIN is entered, along with the fob being present.
Yes, and it works well, until someone gives out the PIN information.
True, but there will never be a security method that prevents someone giving someone else access, unless you link it to their physical body in a way they cannot circumvent it (mandatory retina scan, finger/hand print, etc.)
My 12 y/o PT has manual locks. And a manual trans.
Come take it. It’s got 74k miles. About to need a timing belt and a clutch.
Well that might work if you trust the garage attendant to keep the PIN on a piece of paper in his pocket. If he leaves the PIN with the car, then the thieves get cars by trolling through the garage. Basically any time there is a channel for a single secret the channel must be protected. Did the thief overhear you giving the temporary PIN to the attendant?
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.