As a software developer, my first thought was why doesn't the security ECU send error frames when someone else is using its own address? Then I saw the teardown of the hacking device and it makes sense. They didn't just use a microcontroller and a transceiver. They used a modified transeiver that applies a short-circuit to the CAN bus to force send a 1 when the security ECU wants to send a 0, and the engine ECU will accept the packet because it was built assuming a malicious device would just send bad data, not bad data + a short-circuit. This is hardware hack just as much as a software hack.
Do thieves connect their device to the headlight wiring or the module? Is there anything one can do to make it harder for them to gain access and connect their device, such as adding a cover or lock of some kind?
@@onespeedlite Since this is a mixed hardware/software vulnerability, the easiest solution is to fix the software. Instead of sending a "is key present" message and getting "yes", the engine ECU could send a message that says "is key present [random number]" and the security module would answer "yes [encrypted random number]". The security module, by design, should not have any encryption functionality. The encryption should be done within the keyfob itself. No keyfob, no encryption key, engine doesn't start.
@@marc-andreservant201 I think the car makers are dragging their feet, because more stolen vehicles mean more auto sales. Until the software is updated, it seems a kill switch is the best option available.
To an extent, but comes a point where sales will nosedive because the car model will be known to be an easy theft target. That's what's happened with Range Rover in the UK where newer shapes are becoming impossible to insure because of the high theft rates
Only if you want to take a proper route. But if you yank the inner fender liner. And plastic covers off, without worrying about breaking them, it is a few seconds job for car thieves.
Just down the road from me, a neighbor had hints that someone was checking out his almost brand new Lexus. So, on a warm summer Saturday night, he was ready. He put two of his 'babies' in the back seat under a big blanket. The thieves broke the lock on the small driveway gate in and were just about to pull out of the driveway, when Rottweiler #1 and Doberman #1 decided to get up from the back seat floor and kiss the guys ear. At that the chase was on. As well, Rottweiler #2 and Doberman #2 joined in the fun. The thieves were caught and spent quite awhile in hospital healing from their wounds. From there they have a meeting with some nice police men who want to have a little chit chat with them and a judge who also wants to have a wee little talk with them. Now, I heard via the grapevine that the baddies tried to sue the owner of the Lexus but was laughed out of court. I gotta get me some cute little doggies.
Thank you, that made me laugh. I've seen people poke their noses snooping in the open windows of my parked Land Cruiser - they back off pretty fast when my Deerhounds bare their teeth and "smile" back at the stranger.
Well it was a funny story. Especially considering that he wasn't in California, where he'd be spending the night in jail. Posting bail in the morning and paying hundred's of thousands in restitution and psychological trauma. However if he happen not to know the dogs and they just happen to get a little hungry in the evening and he'd just walk away and let the guy pay his own medical bills. Instead of the city, while he was in custody. That plan would work in California. And as a bonus you may not need to feed the dogs that night.
Saw a lot of Lexus’ being stolen like this, I really wonder why police don’t bait and arrest the buyers/dealers of stolen cars who create a market for stolen vehicles.
Afaik those Lexus are being shipped out to Africa And if we’re talkin bout the states, then I think usually the police department got defunded, lotta ppl quitting, weak laws, soft DA, weak punishment, so don’t think the cops can do much
First thing you can do is modding. First take apart the front and reinforce it and bolt it back on from the inside so it can no longer be popped off without the hood open. Second, buy a extension for both headlights and reroute the wire through the engine bay inside a metal pipe. Third, install extremely loud collision alarms around the headlights and front panels. Forth, use a cloud based cam system with interior hidden camera with sound. Install hidden GPS trackers. You can even create a CANBUS killswitch
Just how are you to access the headlight wiring? it's deep inside the vehicle, more likely they will clone your key then drive it to a secure shop where they can access and reprogram the Can-Bus for export to Africa.
That's the point, that it's NOT buried deep in the car. They get the headlight loose, they then gain access to the backside of the headlight, and the wiring they need is right there. A headlight could be as simple as a few screws to loosen up.
@@AutoTrader I dunno Jeff. Modern headlight assemblies can a PITA to remove without also removing the bumper. Great for a third with plenty of time but not for quick job.
U think while they are steeling the car they worry about damaging the headlight? they are not. They will simply cut the plastic mounts with something and have access to that wiring in less the 2 minutes. They arnt taking the thing apart delicately.
Get yourself an IGLA or Starline i96 immobilser, It blocks Can Bus Injection and Relay attacks. It uses factory buttons as a pincode. Only the owner knows the pincode.
You won't see them though. They wait until 3-4 in the morning when most people are in a good point of their sleep cycle and an attack like this takes only a few minutes. They get in and drive off. There's a seriously good chance that unless you have a loud car you won't even hear them driving off =x
Why would the automakers rush to patch it? More incentive to buy another vehicle if it gets stolen. Just get good insurance. I wish there's a new car with removable steering wheel that just plugs in and out easily.
Car manufacturers have no incentive to prevent theft, no more than Apple cares about someone stealing your laptop. It's more profit for them, because you have to buy a new one... UNLESS they are sued or get bad press from angry customers. The problem is that customers don't get upset enough, because they know their insurance company will pay for the theft.
Avoid buying the top five most stolen makes in USA/Canada: Acura/Honda, Lexus/Toyota, Jeep/Dodge, Land Rover and Ford. Next, use a steering wheel club lock. And if you can, stick to older vehicles with physical, metal ignition keys - you can still get nice VWs, Nissan, Subarus, GM and others from 2018 or so thus equipped. This will decrease the odds of your car being stolen. Bonus points if you drive a manual transmission. For example, no one in Africa wants your 2017 Mitsubishi Outlander with 2wd and manual shift.
Lol, my 30 yr old vehicle has headlights that have no connection to the ECU... good luck getting my vehicle this way. It's still a super easy vehicle to steal though. If you can turn the starter switch, it will start, simple as that... so the brute screwdriver trick works on my vehicle so... my truck may get the last laugh on this specific vulnerability... but that's a small consolation in comparison to having been laughed at for years by cars that have long surpassed my vehicle's level of security so... uh, yeah. Don't take my cocky laughter as anything other than me still being way less secure than you probably are, but still enjoying a small sliver of a silver lining in my storm cloud...
@@viivcreations9161who is dumb enough to tow away a 30 year old car? Tgmhe towing would cost more than the car and what would they do with the car later? Sell it at craiglist for $500??😂
Turn off your key FOBs. Use a steering wheel lock/club. Nothing's foolproof but if your car looks like it's going to be too much trouble for a thief, he'll move on to the next one.
I wish they would steal my beat up 2012 Corolla LE with 183k miles on it. Give me a reason to upgrade my car, but the darn car is so durable it won’t die SO I KEEP ON DRIVING IT
No but newer cars are sensitive to voltage changes. To give you a example of you don't put a Lexus into service mode during a battery replacement you'll brick the infotainment screen. You can even look it up online.
Stock with 2010 and under model any brand gas car ....there a way even thieves can get in car ....but only the owner know how to make car drive long distance
More calculated by the min I swear! I hate thieves go get a fucking job! If you’re able to do all this with technology imagine wat u can do in the working world with it?
Autotrader using scare tactics so folks will buy used cars instead of new cars. LOL. It is easier to "break in" to the passenger compartment than getting to the headlight wiring harness.
This is common issue with these Toyotas. I wouldn't call it a scare tactic. Any push button car can be stolen but requires extra steps where as this Toyota is easier.
I’m convinced the thieves are funded and approached by special interests that are pushing inflation and poverty. They steal these cars and give them to who? Or the parts? I hear of the cars being shipped to other countries, so these people have connects. Even heard some do less than a month of jail time . So they have a lot of Help with this whole culture. Why don’t they get punished , you’re telling me they are great at hiding? What’s really going on here? Yet Saudi’s Arabia has like no crime right, so obviously this is a legal issue that is allowed , this is going as planned
As a software developer, my first thought was why doesn't the security ECU send error frames when someone else is using its own address? Then I saw the teardown of the hacking device and it makes sense. They didn't just use a microcontroller and a transceiver. They used a modified transeiver that applies a short-circuit to the CAN bus to force send a 1 when the security ECU wants to send a 0, and the engine ECU will accept the packet because it was built assuming a malicious device would just send bad data, not bad data + a short-circuit. This is hardware hack just as much as a software hack.
Do thieves connect their device to the headlight wiring or the module? Is there anything one can do to make it harder for them to gain access and connect their device, such as adding a cover or lock of some kind?
@@onespeedlite Since this is a mixed hardware/software vulnerability, the easiest solution is to fix the software. Instead of sending a "is key present" message and getting "yes", the engine ECU could send a message that says "is key present [random number]" and the security module would answer "yes [encrypted random number]". The security module, by design, should not have any encryption functionality. The encryption should be done within the keyfob itself. No keyfob, no encryption key, engine doesn't start.
@@marc-andreservant201 I think the car makers are dragging their feet, because more stolen vehicles mean more auto sales. Until the software is updated, it seems a kill switch is the best option available.
To an extent, but comes a point where sales will nosedive because the car model will be known to be an easy theft target. That's what's happened with Range Rover in the UK where newer shapes are becoming impossible to insure because of the high theft rates
My Mercedes needs open heart surgery to get to the wiring hardness on the headlights.
Hold my *JBL speaker*
Only if you want to take a proper route. But if you yank the inner fender liner. And plastic covers off, without worrying about breaking them, it is a few seconds job for car thieves.
Just down the road from me, a neighbor had hints that someone was checking out his almost brand new Lexus. So, on a warm summer Saturday night, he was ready. He put two of his 'babies' in the back seat under a big blanket. The thieves broke the lock on the small driveway gate in and were just about to pull out of the driveway, when Rottweiler #1 and Doberman #1 decided to get up from the back seat floor and kiss the guys ear. At that the chase was on. As well, Rottweiler #2 and Doberman #2 joined in the fun. The thieves were caught and spent quite awhile in hospital healing from their wounds. From there they have a meeting with some nice police men who want to have a little chit chat with them and a judge who also wants to have a wee little talk with them. Now, I heard via the grapevine that the baddies tried to sue the owner of the Lexus but was laughed out of court. I gotta get me some cute little doggies.
Thank you, that made me laugh. I've seen people poke their noses snooping in the open windows of my parked Land Cruiser - they back off pretty fast when my Deerhounds bare their teeth and "smile" back at the stranger.
Cool story. But you don’t have to make up a story to comment.
@@TheAnonymous916 Not made up my friend.
Well it was a funny story. Especially considering that he wasn't in California, where he'd be spending the night in jail. Posting bail in the morning and paying hundred's of thousands in restitution and psychological trauma. However if he happen not to know the dogs and they just happen to get a little hungry in the evening and he'd just walk away and let the guy pay his own medical bills. Instead of the city, while he was in custody. That plan would work in California. And as a bonus you may not need to feed the dogs that night.
My car was stolen in 5 minutes using this hack. They even cut off my steering wheel lock
damn... ...I guess... must have really wanted your car..
Was it parked on the street? At night? Pretty brazen.
Man that guy was slow too
@@your_royal_highnesscar thieves can get like that
Saw a lot of Lexus’ being stolen like this, I really wonder why police don’t bait and arrest the buyers/dealers of stolen cars who create a market for stolen vehicles.
Afaik those Lexus are being shipped out to Africa
And if we’re talkin bout the states, then I think usually the police department got defunded, lotta ppl quitting, weak laws, soft DA, weak punishment, so don’t think the cops can do much
It’s all an inside job
The CAN bus took the place of what the ignition switch used to do? All of electronics run through the ignition switch in most vehicles.
First thing you can do is modding. First take apart the front and reinforce it and bolt it back on from the inside so it can no longer be popped off without the hood open. Second, buy a extension for both headlights and reroute the wire through the engine bay inside a metal pipe. Third, install extremely loud collision alarms around the headlights and front panels. Forth, use a cloud based cam system with interior hidden camera with sound. Install hidden GPS trackers. You can even create a CANBUS killswitch
Best way to stop the thieves? good old fashioned cut out switch, probably the best and cheapest security gadget you can have.
Just how are you to access the headlight wiring? it's deep inside the vehicle, more likely they will clone your key then drive it to a secure shop where they can access and reprogram the Can-Bus for export to Africa.
That's the point, that it's NOT buried deep in the car. They get the headlight loose, they then gain access to the backside of the headlight, and the wiring they need is right there. A headlight could be as simple as a few screws to loosen up.
@@AutoTrader I dunno Jeff. Modern headlight assemblies can a PITA to remove without also removing the bumper. Great for a third with plenty of time but not for quick job.
They can do it in less than 2 minutes.
@@jennytalbert5547 nope
U think while they are steeling the car they worry about damaging the headlight? they are not. They will simply cut the plastic mounts with something and have access to that wiring in less the 2 minutes. They arnt taking the thing apart delicately.
Get yourself an IGLA or Starline i96 immobilser, It blocks Can Bus Injection and Relay attacks. It uses factory buttons as a pincode. Only the owner knows the pincode.
This car theif would not breath again if I saw him
You won't see them though. They wait until 3-4 in the morning when most people are in a good point of their sleep cycle and an attack like this takes only a few minutes. They get in and drive off. There's a seriously good chance that unless you have a loud car you won't even hear them driving off =x
Why would the automakers rush to patch it? More incentive to buy another vehicle if it gets stolen. Just get good insurance. I wish there's a new car with removable steering wheel that just plugs in and out easily.
Also more incentive to not buy a car from that manufacturer...
How do car owners get information on updates to prevent this from happening
Car manufacturers have no incentive to prevent theft, no more than Apple cares about someone stealing your laptop. It's more profit for them, because you have to buy a new one... UNLESS they are sued or get bad press from angry customers. The problem is that customers don't get upset enough, because they know their insurance company will pay for the theft.
@@onespeedlite And then no one knows why insurance rates are jumping up so dramatically...
The name can bust is crazy lol whoever agreed to make all cars have this feature knew eventually thieves will learn about it
Avoid buying the top five most stolen makes in USA/Canada: Acura/Honda, Lexus/Toyota, Jeep/Dodge, Land Rover and Ford. Next, use a steering wheel club lock. And if you can, stick to older vehicles with physical, metal ignition keys - you can still get nice VWs, Nissan, Subarus, GM and others from 2018 or so thus equipped. This will decrease the odds of your car being stolen. Bonus points if you drive a manual transmission. For example, no one in Africa wants your 2017 Mitsubishi Outlander with 2wd and manual shift.
Nah you can live in fear if you want
Lol, my 30 yr old vehicle has headlights that have no connection to the ECU... good luck getting my vehicle this way. It's still a super easy vehicle to steal though. If you can turn the starter switch, it will start, simple as that... so the brute screwdriver trick works on my vehicle so... my truck may get the last laugh on this specific vulnerability... but that's a small consolation in comparison to having been laughed at for years by cars that have long surpassed my vehicle's level of security so... uh, yeah.
Don't take my cocky laughter as anything other than me still being way less secure than you probably are, but still enjoying a small sliver of a silver lining in my storm cloud...
they can still just tow truck it away
@@viivcreations9161 also true... aaaand, clearly illustrates that you missed half of what I said.
@@viivcreations9161who is dumb enough to tow away a 30 year old car? Tgmhe towing would cost more than the car and what would they do with the car later? Sell it at craiglist for $500??😂
Turn off your key FOBs. Use a steering wheel lock/club.
Nothing's foolproof but if your car looks like it's going to be too much trouble for a thief, he'll move on to the next one.
I wish they would steal my beat up 2012 Corolla LE with 183k miles on it. Give me a reason to upgrade my car, but the darn car is so durable it won’t die SO I KEEP ON DRIVING IT
183k is not that much for a Toyota I would say, I have a Renault which has around 180k and still running fine 😃
@@AlexandruHasegan
183k isn't that much??? I only said that because I STILL HAVE THE CAR NOW🤪👌AND IT DRIVES LIKE A TOP. You can keep your Re-nult🤣🤣
Candy's Dandy but Liquor's Quicker...
Would an install of the Ghost II Immobilizer stop this type of auto theft.
who is going to pay for the damages to the car even if you install a Ghost or IGLA?
You or your insurance, but at least you have your car still in the driveway, IMO@@hollaz2
Not in mine. My ignition is disable by this tech. So FU to the thieves.
If the battery is NOT CONNECTED will the thief's tool work?
No but newer cars are sensitive to voltage changes. To give you a example of you don't put a Lexus into service mode during a battery replacement you'll brick the infotainment screen. You can even look it up online.
Yeap they just got my new Camaro SS the other night
Dang…
Did you have any theft deterrents on your car?
@@ambivertical just what comes with the car stock but that's nothing. I just got me a 1LE now and I have low jack in it
@@joshcardone1836 did you have insurance to cover for the car theft to pay for this new car?
Sure they did
You would think The FBI would have fun watching hackers and snatching them up. Why don't they mention it?
???
They are very busy jailing Christians and other religions groups
Also lot guys use repeater keyless
Pin to drive and no normal can bus Tesla.
Just get in the habit of pulling a few key fuses on your car like the fuel pump for example, without that the car wont even run for you..
Or install a kill switch
Stock with 2010 and under model any brand gas car ....there a way even thieves can get in car ....but only the owner know how to make car drive long distance
Wait, what? Is that English (or just poorly translated from a different language)? I don’t understand…
More calculated by the min I swear! I hate thieves go get a fucking job! If you’re able to do all this with technology imagine wat u can do in the working world with it?
Autotrader using scare tactics so folks will buy used cars instead of new cars. LOL. It is easier to "break in" to the passenger compartment than getting to the headlight wiring harness.
This is common issue with these Toyotas. I wouldn't call it a scare tactic. Any push button car can be stolen but requires extra steps where as this Toyota is easier.
I’m convinced the thieves are funded and approached by special interests that are pushing inflation and poverty. They steal these cars and give them to who? Or the parts? I hear of the cars being shipped to other countries, so these people have connects. Even heard some do less than a month of jail time .
So they have a lot of
Help with this whole culture. Why don’t they get punished , you’re telling me they are great at hiding? What’s really going on here?
Yet Saudi’s Arabia has like no crime right, so obviously this is a legal issue that is allowed , this is going as planned
@ashleybrown889