Hackers win Tesla Model 3 at security competition with $530,000 exploit
%2Favatars%2FFbiapfPKTgv1.jpg&w=96&q=75)
%2F2023%2F03%2F30%2Fimage%2Fjpeg%2F3oJULPAjSjNJsbuEy62xlCmUKnRd9zxF7BvsGmG0.jpg&w=3840&q=75)
According to security researchers, malevolent hackers could remotely hack into a Tesla and switch off the lights, honk the horn, open the trunk, turn on the windshield wipers, and tamper with the infotainment system thanks to three vulnerabilities linked together.
During Pwn2Own Vancouver, a security competition where "white hat" hackers and security researchers can win the devices with previously discovered vulnerabilities (that they uncover and exploit)—plus a cash prize—researchers from the French security firm Synacktiv won $530,000 and a Tesla Model 3.
Despite these flaws, the researchers noted that Tesla is doing an excellent job of making the car difficult to hack by putting in place a sophisticated system of sandboxes, which isolates components and makes it more difficult to gain greater privileges by simply breaking into one of them.
TOCTOU attack
The Synacktiv team demonstrated two different exploits. At first, it took them less than two minutes to compromise the Model 3's Gateway system, which serves as the energy management interface for communication between Tesla vehicles and Tesla Powerwalls.
They inserted the required malicious code using a Time of Check to Time of Use (TOCTOU) attack, a strategy that takes advantage of the brief interval between when a computer examines something like a security credential and when it really uses it.
They weren't hacking a genuine Model 3 for safety concerns, but they would have been able to open the front hood and doors of the vehicle even while it was moving.
The second vulnerability allowed the hackers to remotely take control of the infotainment system of the mimic Tesla and, from there, other car systems. They gained access using the Bluetooth chipset's heap overflow vulnerability and an out-of-bounds write mistake, the latter of which allowed them control of the security gateway. This device delivers commands to the vehicle.
According to the researchers, the remedies for these vulnerabilities are being developed by Tesla and should soon be installed on cars.
SHOW COMMENT (1)
/2023/09/30/image/jpeg/Q3IuT3h5XPfnJ2EWbbBl5YSI7PfMBTI5vxeO1bDq.jpg "Perseverance rover tracks a dust devil moving at 12 mph on Mars")
/2023/09/30/image/jpeg/TVhkJL65iVgn0Prm58w6RDhGCNHomwpg9mQkYLWj.jpg "DNA tells the story of the first cowboys’ African descent")
/2023/09/04/image/jpeg/UEuPO8vP8YA3PICuhwuvmebK4Pl9Cm1cShTAqGB2.jpg "Chinese researchers create dancing microrobots using lasers")
/2023/09/30/image/jpeg/6IjK0KBN2CeWMA7df6Up3U6thpVJXxlG6O1Vqavl.jpg "What are these black balls doing in the reservoir?")
/2023/09/30/image/jpeg/j7W0nmt9ybApf7s6NcJo5tsvdEi9ZXLNcrEvZOcW.jpg "Codec avatars: The next frontier of Meta’s VR technology")
/2023/09/20/image/jpeg/GbCK0hde2nR9kSs3cEVNjZTZ0DVOtgyTUVCQA5bs.jpg "Life by 2100: Space settlements, education, and the future of warfare")
/2023/09/08/image/jpeg/GOJZju4tHdDbyhKWk3l1w2NRhwbGMATEVgpOcDBQ.jpg "The future of medicine could lie in organoid research")
/2023/09/30/image/jpeg/IZGEEAVw2PVVXJIIOPpT9vUucMJhQT9h6QTUx6t6.jpg "Google's new undersea cable will connect Portugal and the US")
/2023/07/31/image/jpeg/rassNfpW1ruJqJTMdjJ7fLHEXtdOatgkJNgnGYyX.jpg "Using quantum computing to speed up optimization problems")
/2023/08/15/image/jpeg/3ADnsR8aU7X67YVp1xAQ4daq6u8JVlTTLmG0Rx6c.jpg "What is pre-war steel, and why are people stealing it?")