Teen hacker gains remote control of over 20 Teslas

Daniel Sims

Daniel Sims

Posts: 1,380   +43
Staff
Facepalm: This week, a teenager reported that he has gained remote access to around two dozen Tesla cars in multiple countries and is trying to contact their owners. The list of things he can do to the affected vehicles is long and dangerous.

Nineteen-year-old IT security specialist David Columbo reported in a Twitter thread Monday and Tuesday that he gained complete control of over 25 Teslas in 13 countries without their owners knowing. He doesn’t want to disclose exactly how he did it until he reports the vulnerability to the non-profit Mitre. However, Columbo did say it was due to errors on the owners’ part, not a security flaw in Tesla’s software.

Columbo said he could search the precise location of each car, disable their security, open their doors and windows even while they’re on the road, play music and YouTube videos at full volume, and more. While Columbo can’t remotely drive the cars, he could steal them if he were at their physical locations. Tesla’s security team has already told Columbo they’re looking into it.

Even though Columbo says this isn't Tesla's fault, it could still be a PR issue for the company, painting the cars as ever more vulnerable in consumers' minds. Near the end of last year, Tesla recalled a significant number of vehicles sold in the US over trunk lid problems. This incident could also affect the development of Tesla's self-driving mode, which is still in beta.

Permalink to story.

https://www.techspot.com/news/92971-teen-hacker-gains-remote-control-over-20-teslas.html

 
Dimitriid said:
Time for me to be inflammatory again but the kind of person that buys a Tesla seems to me to also be the exact kind of person who sets his password as "password" without giving it a second thought and then buys and NFT monkey.
Click to expand...
I can agree with that. You aren't going to see many failures buying either.
 
If he can play custom YouTube on the car, he obviously can contact the owner by video. He is either not very smart or just trying to get famous by going public.
 
  • Like
Reactions: Freddie159
I take it nobody thinks its a plan...... why is there law against creating 2048bit encryption apps and hardware combo's ...?? Maybe because if its too hard for the FBI to hack your car its not good for them..???
 
  • Like
Reactions: Underdog and theUnforgiven
Dimitriid said:
Time for me to be inflammatory again but the kind of person that buys a Tesla seems to me to also be the exact kind of person who sets his password as "password" without giving it a second thought and then buys and NFT monkey.
Click to expand...
A generalization. I bought a Tesla, and have never set my password to 'password' or anything like it (I.e. easy to guess) in my entire life.
 
See...this is why I love my 30 year old truck. Cant hack a computer if it doesnt exist (or in my case, uses a 6 it cut down 8086).
Dimitriid said:
Time for me to be inflammatory again but the kind of person that buys a Tesla seems to me to also be the exact kind of person who sets his password as "password" without giving it a second thought and then buys and NFT monkey.
Click to expand...
I imagine the people who buy most teslas are the same ones that buy the newest, highest end iphone every year and subsribe to every streaming service rather then buy something they want.

model 3s are cheap enough though you see people who only buy the newest, highest end iphone every 2 years.
 
  • Like
Reactions: wizardB
cliffordcooley said:
This is why you don't integrate infotainment with any vehicle controls. Vehicle controls needs to be isolated from all other systems.
Click to expand...
The hacker states that it not the fault of Telsa. I have to disagree. Why on earth would a person need to remotely access a lot of these features from the internet? Seriously, the security of a Telsa does not seem to be any stronger then the same password you use to login into TechSpot. You know the same passwords that people make too obvious (123456, etc.) or are stolen on a daily basis from company security breaches.

IMO, Telsa is so focused on being a cutting edge, game changing company that sometimes they just fail at basic common sense. A lot of times it works for them, but sometimes you have to look at it this way: "Just because you can, doesn't mean you should."

Now get off my lawn ;)
 
  • Like
Reactions: Freddie159, wiyosaya, terzaerian and 1 other person
This could be disastrous for Musk...! If the car parts are to blame, ALL the Teslas in the World need to be recalled...!
 
  • Like
Reactions: Freddie159
You must log in or register to reply here.

Similar threads

Daniel Sims
  • Locked
All Cybertrucks recalled because acceleration pedals can become stuck
2
Replies
42
Views
447
captaincranky
captaincranky
midian182
Cybercriminals are using developing nations as test beds for ransomware attacks
Replies
2
Views
43
JamesBlond
J
midian182
Samsung receives $6.4 billion in CHIPS grants, will boost production in Texas
Replies
8
Views
112
kiwigraeme
K

Latest posts

Back