Tesla Cars, Bluetooth Locks Are Vulnerable to Hackers, Can be Unlocked Remotely: Cybersecurity Firm

Tesla cars, any smart locks using BLE technology, including residential smart locks, could be unlocked in the same way, stated NCC Group.

Tesla Cars, Bluetooth Locks Are Vulnerable to Hackers, Can be Unlocked Remotely: Cybersecurity Firm

Photo Credit: Reuters

The hacking was demonstrated on a 2021 Tesla Model Y

Highlights
  • NCC Group said such a vulnerability was not like a traditional bug
  • Researcher was able to unlock the car and drive it
  • BLE-based authentication was not designed for locking mechanism
Advertisement

Millions of digital locks worldwide, including on Tesla cars, can be remotely unlocked by hackers exploiting a vulnerability in Bluetooth technology, a cybersecurity firm said on Tuesday.

In a video shared with Reuters, NCC Group researcher Sultan Qasim Khan was able to open and then drive a Tesla using a small relay device attached to a laptop which bridged a large gap between the Tesla and the Tesla owner's phone.

"This proves that any product relying on a trusted BLE connection is vulnerable to attacks even from the other side of the world," the UK-based firm said in a statement, referring to the Bluetooth Low Energy (BLE) protocol — technology used in millions of cars and smart locks which automatically open when in close proximity to an authorised device.

Although Khan demonstrated the hack on a 2021 Tesla Model Y, NCC Group said any smart locks using BLE technology, including residential smart locks, could be unlocked in the same way.

Tesla did not immediately respond to a request seeking comment.

NCC Group said such a vulnerability was not like a traditional bug which could be fixed with a software patch and added BLE-based authentication was not originally designed for use in locking mechanisms.

"In effect, systems that people rely on to guard their cars, homes and private data are using Bluetooth proximity authentication mechanisms that can be easily broken with cheap off-the-shelf hardware," the firm said.

"This research illustrates the danger of using technologies for reasons other than their intended purpose, especially when security issues are involved".

© Thomson Reuters 2022


How is Alexa faring in India? We discuss this on Orbital, the Gadgets 360 podcast. Orbital is available on Spotify, Gaana, JioSaavn, Google Podcasts, Apple Podcasts, Amazon Music and wherever you get your podcasts.
Affiliate links may be automatically generated - see our ethics statement for details.
Comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Further reading: Tesla, Model Y
Elon Musk's SpaceX Said to Become Most Valuable US Startup, Valuation Rises to $125 Billion
Facebook Gadgets360 Twitter Share Tweet Snapchat LinkedIn Reddit Comment google-newsGoogle News

Advertisement

Follow Us
© Copyright Red Pixels Ventures Limited 2024. All rights reserved.
Trending Products »
Latest Tech News »