We Stole a Tesla with this $20 Device
Vložit
- čas přidán 12. 07. 2022
- Thanks to Omaze for sponsoring today’s video! For your chance to win a Superformance MKIII-R, click here now omaze.com/donut22
Huge thanks to Sultan Qasim Khan for coming out and helping us with this video! Sultan is a Principal Security Consultant and Researcher, at NCC Group (one of the world’s largest security consultancies with over 35 global offices, 2,000 employees and 14,000 clients)
Go check out his youtube channel ( / @sultanqasim ) and read more about his BLE Attack here. (www.thedrive.com/news/new-tes...)
HERE IN MY GARAGE…
Curious what we use in the shop on a daily basis? Check it out below. And if you purchase these tools from these links, you’re helping support Donut. We appreciate it!
Milwaukee Electric Tools 2550-20 M12 Rivet Tool (Bare Tool) www.amazon.com/gp/product/B07...
Milwaukee - 48-22-0125G - 25 ft. Magnetic Tape Measure - 2-Pack
www.amazon.com/gp/product/B08...
Milwaukee 48-59-1880 M18 REDLITHIUM HIGH OUTPUT XC 8 Ah Lithium-Ion Battery and M18 /M12 Charger Kit
www.amazon.com/gp/product/B07...
Milwaukee Angle Grinding 2781-22 M18 Fuel 4-1/2"/5" Slide, Kit
www.amazon.com/gp/product/B00...
Milwaukee 2735-20 18V Li-Ion Flashlight
www.amazon.com/Milwaukee-2735...
Milwaukee 2557-20 M12 Fuel 3/8" Ratchet
www.amazon.com/gp/product/B07...
Milwaukee 48-11-1880 M18 REDLITHIUM HIGH OUTPUT 18v 8.0 Ah Lithium-Ion Battery Pack
www.amazon.com/gp/product/B07...
Milwaukee 2125-21XC M12 LED Underhood Light Kit
www.amazon.com/gp/product/B07...
Milwaukee M18 FUEL 3/8" Compact Impact Wrench with Friction Ring
www.amazon.com/Milwaukee-Comp...
Adenna Dark Light 9 mil Nitrile Powder Free Exam Gloves (Black), Large - Box of 100 (DLG676)
www.amazon.com/Adenna-Light-N...
Scott Shop Towels Original (75143), Blue, 55 Sheets / Standard Roll, 30 Rolls / Case (10 Bundles of 3 Rolls), 1,650 Towels / Case
www.amazon.com/Scott-Original...
Zep Cherry Bomb Industrial Pumice Hand Cleaner - 48 Ounce (Case of 4) ZUCBHC48CA
www.amazon.com/Zep-Cherry-Cle...
AIDEA Microfiber Cleaning Cloths-100PK
www.amazon.com/AIDEA-Microfib...
Barrow 52 in. Brown Large Rectangle Wood Coffee Table with Lift Top
homedepot.sjv.io/c/2095194/45...
Barrow 52 in. Brown Large Rectangle Wood Coffee Table with Lift Top
homedepot.sjv.io/c/2095194/45...
New to the Channel?
►Watch this: • POPULAR DONUT VIDEOS
We upload almost every day, subscribe so you don't miss out!
►Subscribe here: bit.ly/1JQ3qvO
Click here for more info on joining the Donut Underground!
► / @donut
Shop Donut Merch:
►www.donut.media/
Donut Media is at the center of digital media for the next generation of automotive and motorsports enthusiasts. We are drivers, drifters, and car enthusiasts who love to tell stories. - Auta a dopravní prostředky
Thank you! I always wanted a Tesla but couldn’t afford it until now! $20 is a steal.
yea! well worth it for that price
enjoy it! but tesla's have a tracking system on them. if its reported stolen the police will find it in under 15 mins lmao
hold up
@@billheadis9138 not if I strip the entire thing first
@@billheadis9138 nord vpn
jeremiah definitely on a watch list for all the stuff he’s looking up
If you're not on at least a few watchlists, are you really living?
aren't we all
@@alexknouse9133 😂😂
You have a point.
Prob already on a list for interfering with radar...
I know he has friends with guns and big ass 100 round mags and auto reset triggers with a bump stocks. Probably sold some too the cartel by now. Did he ever pay you for that quarter pound you fronted him and how's the doctor shopping pill mill thing working or are you just getting the fake blues from your cartel connect. Kisses
Talking about using the dark web and then doing a Google search after setting it to dark mode is one of the funniest bits I've seen in a while lmao. That got a genuine laugh out of me XD
People will think that’s how you do it now.
yeah that was the good stuff for sure
Yeah, bro That was so funny! Hahaahaa XD🤣😂
Yeah, that cracked me up as well 😆 🤣
yeah, I laughed so hard 🤣🤣🤣
Whoever is editing these videos with the sound effects definitely needs a raise. It makes the videos much more entertaining and has me cracking up
First thing I did was look for a comment about the sohnd design. Why is it so good LMAO
a good for nothing tesla
Jerry planning to steal a car from the shitter is pure gold. He’s the best!
A little bit of foreshadowing to him post-ceviche 😅
Delaying the wipe
And then actually getting diarrhoea on the day he's supposed to steal the car, now that's some committment
It’s the best place to think!
That’s where we watch from, so it’s full circle.
I love this tutorial on how to steal modern vehicles. It’s about time Donut fights against the ridiculous car market we’re in right now
You say that like it’s going to end 😂
I mean, we're going to have to start jailbreaking our cars to access features like heated seats so I feel like we'll be seeing more literal car hacks in the future.
@@4DD1S0ND3W1TT shit. Aint that the truth?
@@4DD1S0ND3W1TT "capitalism breeds innovation"
the innovation
I hate to break it to you but old cars were even easier to steal. What are you even trying to say?
My dad was a repo guy in the 70's and he had 20 keys on his key ring, and they would unlock and start literally every single car. Each manufacturer only ever made a couple of different cuts, and this practice took place well into the 90's.
Left out that if you set PIN to drive, this won't help you steal the vehicle, you'd also have to hack the PIN number needed to start the car once you are in it.
Yup, setting that PIN to drive was the first thing I did, right after getting the Tesla ! 😁
This just made me feel less paranoid for setting a pin to drive, but even more paranoid that someone can break into my car at anytime with $20
Tesla offers a feature called “PIN to drive” which at least prevents the driving portion of this hack. I’m not sure what percentage of owners know about it or use it.
Not enough. A lot of owners don’t know much about their vehicles. It’s crazy, but I make sure to have the PIN to drive
@@RetroExhibitCollective True, it should probably be enabled by default. Also, it doesn’t prevent opening the doors.
@@RetroExhibitCollective they should make it thumbprint to drive, and have 5 slots of available thumbprints to use.
Except everyone's PIN is 42069
This should be upvoted for all Tesla owners. I actually work in Cyber Security and this vuln was brought up about 6 months ago I believe. All Tesla owners should always set pin to drive. I do on mine.
I love how pleased yet simultaneously chill Sultan is with the "this makes me happy" whilst everyone is going off chops. Cool guy who enjoys his work, great to see.
Dude is an engineer. This is how they are.
@@knutlovhoiden Am an engineer, can confirm. Guy was probably hootin' and hollerin' on the inside (and rightfully so) XD
@@stheil too feckin right man just outsmarted Elon rofl 🤣😂 I would be extremely pumped on the inside aswell xD
@@Telesgoooo Teslas have an option to require a code to be typed in on the screen before you can drive it. It doesn't stop someone getting into the car but it does stop them driving away
a good for nothing tesla
3:00
Are we not going to talk about the fact he's doing this while taking a sh!t
The editing team and animators are delivering top notch work!!
a good for nothing tesla
Alternative title: *"Jeremiah trying to steal his own car for 11 minutes straight"*
*”And then getting the shits”*
@@WhopperJrWithCheese lmao
Also, if keyfobs use "rolling codes" how did he get into the Camero or James's car?
@@TheKoltenparker they pressed unlock on the key once outside the range of the car. The car didn't detect the button press so that one code is active until the button is pressed again
@@TheKoltenparker I think he recorded the key far from the car so the code wasn't "heard" making it still valid ? just speculating tho
It’s great seeing Justin come more and more out of his shell. He seemed a little nervous at first (as I think we all would be) but now is handling these shows like a proper host! Glad to see it
I won't lie I kinda felt his coyness but I was like it's only natural considering he's new and is in the company of larger than life characters but he's settling in good. I agree with you
He's definitely settling in really nice, I'm constantly amazed at all the people Donut adds, they're AMAZING! Please don't tell James and Nolan that Jeremiah is my new favorite ;)
@@RumHamwich I think Jeremiah is a lot of people's favorite. But then again they're all awesome. Still wishing for an Up To Speed on Donut.
so did everyone, james didnt start like what he is today, its pretty cool seeing the changes
You guys are like the women on the View.. all gossip.
Great! Thanks for showing everybody and spreading the word about this. Awesome job Donut.
diarrhea cha cha cha
Great vid! That's why I had an on-screen 4 digit pin code in my Tesla. Don't know of any other keyless entry car that has that.
Glad to see Justin comfortable in front of the camera, he's a great addition to the donut team.
I miss Aaron a lot!!
The amount of times they've given us the resources to steal stuff 😂
The more awareness. The more pressure the auto industry has to make safer products. As well as, educate the public about false security products.
Except he didn't explain how he got the Camero or James's car open? He said the keyfobbs use "rolling codes" so they are constantly changing.. well how did he unlock it then?? 😂
@@TheKoltenparker Essentially when he recorded the unlock with the key the car didn't pick it up yet so the key is on the next code while the car is still on the previous code
or told us where to buy illegal stuff
@@TheKoltenparker The code doesn't change if the car is out of range of the key. Notice how he kept going inside (out of range of the car) when he recorded the keys code.
Another thing you can do is not leave your car keys near the front door or maybe put them in a faraday cage. As you can usually pick up a key fob to relay by standing next to someone's front door (in the middle of the night ofcourse).
In the future they will have to come up with something like a key that you will physically need.
Not really, such an easy way to keep someone from stealing your Tesla.
There is a key that comes with the car
Me: laughing at a car that needs to be unlocked with $12 worth of supplies.
My car: scared of a coathanger and some crossed wires.
I opened my own car in less than 30 seconds using a metal bucket bucket handle 🤡, and its not even that old, its a 2013 model
@@falalogo I can unlock most cars in 30 seconds..... Do yourself a favor and invest in an alarm lol.
@@ianybanez6884 I can’t afford it 😭 I only have an Apple air tag so if they steal it I’ll at least know where they left it
I once got into my 1994 Buick with a sword. Got on a small ladder, pried the top part of the door away from the frame and slid the blade of a decorative Highlander claymore in he gap to hit the unlock button.
There are ways to mess with thieves. Some ways (depending on the car) would mean that they could only drive maybe a block or so. Others can REALLY mess with them to the point of deterring further attempts to steal the car. The trick is to get creative, and stay away from off-the-shelf systems.
Sure, some cars can be started with literally two lengths of wire (no breaking panels, no cutting wiring, no punching the ignition barrel, once you're in the engine bay it's really that simple). But there are still ways to protect a car even if that's the case.
Being in Cybersecurity I've known just how just how fragile and insecure our world is. I love that you're doing videos on this to keep people aware. It doesn't need to teach them everything, just give them the basic knowledge to start with and continue their own research from there. (Also yeah hacking is not just plug and play but as you can see, it's not THAT hard...)
dude you got Discord? i need some tips as i plan to become a pentester
I always say, “anything man-made can be man-hacked”. Where there’s a will, there’s a way.
99.95% of ppl will do nothing with this info!!
The good old safety/security vs convenience tug of war
okay well tell that to Google. not research just a google search
The one thing I wish you guys covered with that hackrf is the keyfob cloning its a bit extra as you have to have a blank but I was almost a victim of this in Louisiana when I was helping with hurricane IDA relief.
There's a few videos on yt where people have been victims one guy in Canada eventually recovered his truck before it got onto a cargo ship luckily but insurance covered him and he already had a replacement.
Either way love the content you guys rock keep it up!
Very very interesting video, I like tinker with stuff like micro-controllers, and amateur radio operations stuff, but also dabble in security and cars a bit, so this is directly in my lane. I'm playing with a pair of 915MHz LoRa Radios right now to act as a medium for a remote sensor. I would like to see more small electronics stuff if possible, I'm sure yall could find a good use case for something like a Raspberry Pi Pico or smaller boards like Seeeduino XIAO, these boards are seemingly getting smaller and cheaper. Pico recently adding wireless capabilities on 2.5 GHz with the new W boards. I find these to be the ideal boards for data logging and remote sensor projects, I'm sure Jerry came across some of this during his weeks of research into this video. Again super cool video! Wild seeing you guys look into this stuff since its legit my main hobby lol. PS DONT get rid of that SDR bunch of use cases for that thing (pretty sure it can run as a Ham if you wanted)
I'd love to see you guys do a whole series on security. Like how to avoid trackers and keep people from following you home and other useful tips and tricks we might not know.
He just said switch off your Bluetooth. That's all you need to do for now 🤣
Take three lefts in a row and if they are still following you call 911
Andy, is that an apple air in your glovebox or does your gf not trust you?
@@deletefacebook8419 LOL!
@@HairyCheese your iphone or ipad will tell you there is a device tracking you.
I’m an old lady who watches these videos for all the handsome and funny young men. I LOVE Jeremiah and this was GREAT. Sorry to hear about your diarrhea buddy, hope you feel better. Justin, you did amazing sweetie!! Please keep these great eye candy videos coming!!! ❤️❤️
wtff😭
I’m a visual appearance redesign of a video game’s asset that watches these videos for all the handsome and funny….
Loool
Ayoooooo ?! There no way you dead ass someones dried up thirsty grandma. Either that or you gotta be smokin' that pack fr
AYOOO 📸📸
i like how you added a bar to see how long the sponsored segment was. very goog youtuber. you have a new subscriber now
This is very well and superb simply explained. Good job.
Love you boys... hope you continue to grow and prosper.
Same
I give it another 30mins before this Video gets Gagged and NDA'd hope Donut don't get sued
@Don't Read My Profile Photo nerd
I love how James is like "you wanna steal my car, I know what the videos about"😂 You guys are just so cool. Love this channel
I saw that you had the sampling rate set to 2MHz when recording a 300MHz signal. According to Nyquist’s theorem you need a sampling rate at least 2x the data rate in order to digitally recreate an analog signal.
What kind of launchpad is that? The naming convention reminds me more of the C2000 series MCU, but the USB debugger/programmer part of the board looks more like an MSP432's
It's not just 20$. It's 20$ and years upon years of software and hardware engineering of the guy, who made it for You. Props to him 👍🏻
Gosh, some people will look for any opportunity to complain.
@@BatCaveOzshuddup
Honestly, is it worth it for someone to be so DISHONEST?
As an embedded software engineer, I could build the hack device system into a product in a month. No need of laptop. It would under 50 and probably be it easy enough for anyone to use, but I won't.
@@thomasschwarting5108 Yes. Tesla owners deserve to be stolen from.
Mad props to Justin for stepping in halfway through and being able to pick up where Jerry left off, that couldn’t have been easy to do 😂
I noticed alot of youtubers getting sick as of late. Wonder if its a trend..
a good for nothing tesla
Great seeing Justin so relaxed now. great addition to the team!
Hardware cost: $ 20
Software, time, knowledge cost: $ 200.000
the knowledge is priceless but the time and software are free
Didn't he mention he does it with free software?
Probably 100 different versions available in GitHub. So make the software, time, and knowledge more of 10 cents.
vs code is free
@@cat-le1hf maybe your time is free but most people’s time has a value.
Lol love the part where Justin has a little Donut cheering section
I love how thieves watching this video are going to be lets steal some tesla's if he can do it so can we🤣
"STEAL! THAT! TESSLAAA!!! 🤣@@kokopellione
a good for nothing tesla
Good video. 👍🏼
How about you test those air intake swirl generators and velocity stacks? 🙂
The fact that Jerry actually tried to build that hacking signal thing himself, tells me that he's way more smarter than he let's on.
I imagine turning on PIN to drive would also keep someone from driving away in the car with this sort of attack. Still cool/crazy to see this in action though.
Probably, but it wouldn't really stop them from stealing all your stuff in the car
@@JaysonGamboa stuff in your car, vs your $50,000 car.
@@sidneylorentz4810 what about $50,000 stuff in your car
@@JaysonGamboa ...either would a brick
I bet most people are unwilling to do dashboard only pin entry tho, as they want the pavlovian satisfaction of having the vehicle start when they press the fob
Great video as usual, but we need old B2B series again!
Bro this video just came out 4 minute ago and its 11 mins long...
@Don't Read My Profile Photo ok
@@Jonssi05 lol
We need everything this channel blesses us with. Best all around channel in all of CZcams fr
@Don't Read My Profile Photo bro you aren’t doing anything…
Appreciate the efforts you put in, it’s difficult 🎉
Dudes a legend! What a genius!!!! It's crazy how easy he made it sound and look.
Jeremiah and Justin killed it in this video as well as the production quality from the crew. It felt like I was watching a TV show the whole time. Would definitely watch something on a topic like this again.
That guys cool as shit I hope you bring him back for other things. Dudes as sharp as that deserve more screen time
oh cool i have those boards, was for my computer engineering microprocessors class. Used it to make a bluetooth coffee maker but nice to know I can add other capabilities to it
My co worker purchased one of these type of devices for ~$1200 and has a little business on the side programming fobs for people. I’m not sure all what brands he can do, but I watched him program some new fobs for a guys 2020 RAM pickup and all he did was pull up, grab the VIN then play with his machine for a few minutes and voila; he handed the once blank aftermarket remote to the truck owner and said “try it”. The truck fired right up.
Damn Jeremiah! You did some real solid investigative work!! Love this!
If keyfobs use rolling codes, how did he get into the camero or James's car?
@@TheKoltenparker Yeah it's that hard to understand ;) when you record the keyfob while out of range, this recorded code will work...just once. You'll need another press to record the next code...
Shame that diarrhea got in his way
I think you mean liquid investigative work.
Should've used the "PIN to drive" feature; extra layer of security that this hack doesn't provide
I said the same thing, they should had added that to the video as variable. I believe most ppl use the pin to drive
There's an exploit to pin to drive where you can still get the car to drive by sending a bluetooth command.
Turning bluetooth off is obviously not the solution. It’s a tesla, you don’t want to use it like a legacy car.
Just turn on PIN to drive.
This is probably one of the coolest video I’ve ever seen. Donut media never seize to amaze
My friend's 2019 CRV was stolen last year from the parking lot of his grocery store using a ~20$ Signal Amplifier.
They amplified his signal while he was inside and they just left with the car.
He later saw the CCTV footage and no one could tell that they were stealing that car. It just looked super casual and quick as if you unlocked the car with a key.
Few days later the police found the car at the port waiting to be shipped in a container. (Possibly in Russia as it's the most sought after car model there).
Edit: The CRV is keyless entry and start, that's why they could pull this off with just the amplifier
Dudes pulled a Gone in 60 Seconds move
Most likely to be shipped somewhere in West Africa.
@@maxistudios3092 or balkans.
this amplifier they used is this 15k one he showed in the video
@dennisoeztuerkk No it’s not, it’s incredibly cheap to make something like this as long as you understand electrical hardware and programming.
I'd like to let you know (experience in infosec here) that rolling codes, even though they help, are inherently flawed, and therefore exploitable as well. If you say had that key sniffer posted at a place where people may frequent multiple times, like a parking lot for a place people work at; you can eventually get the entire rolling key if you capture enough unlock signals
Yup, and then iterate all of them untill one works with the car
A parking lot would suck, you would have so many codes you wouldn't know which car they belong too.
Rolling codes are good fun. Take the key out of range of the car. Press the key 300 times. Return key back to car. Rolling code is now out of sync with car. Key fob no longer works
@@jesseclutterbuck6617 except they are designed to resynch. What low budget keyfob are you using?
Clever clever
3:47 - The Windows error sound was hilarious!
That error sound the first time he tries to open the door after trying to unlock it is gold.
In my old car I kept having stuff stolen out of my car. I though the first few times that I must have not locked my car. A cop finally came to my car and looked under the car and found a box with a receiver on it that was attached with a magnet. Apparently, its a big problem in cars that are parked in the same location often. Like people who have to street park or park in their driveways. People put them on the car and come back the next day or a few days latter and they can easily get everything from the car. The cop told me the best way to solve this is by hitting lock twice. It picks up on the first code and not the second that is done in quick succession.
I thought I had an OCD obsession with double- or even triple-tapping the lock on my key fob but turns outs to be a legit deterrent
When cars were first stolen by relay attacks insurance companies were not paying out because in their minds if you still had both sets of keyfobs then it must have been an inside job.
So the cops where stealing from you.
I don't know if thats true or not for your cars made for the US market; but in the UK, and stated in the Vauxhall manual, it explains that if you hit lock twice, what that disables is the proximity sensor so your car wont unlock until the key is pressed again, and therefore not by the signal being close by (either your approach to the car or by relay attack).
Best to just disable the proximity sensor soon as you get your car. More secure, even before relay attacks started back in the day.
I usually lock my car with the switch on the inside so there isn't a signal being broadcast
One thing I love about Donut is you don’t HAVE to be a black thumb or mechanic type to love there stuff. I love detailing cars , and can do basic oil changes and stuff and I feel like I’m part of the club
Bro getting mega diarrhea on the day Sultan got there is relatable af
Bluetooth had vulnerabilities since the day it was launched, i remember back in nokia times you can reverse bluetooth access anyones phone like full access lol
It got so Bad in UK / Europe they started fitting Bluetooth Jammers in Bars 🍸
I’m not sure that I’d really classify this as a vulnerability. This sort of attack is always going to be inherent to this type of low-energy open protocol. Latency requirements mean that this requires a good Wi-Fi link, at minimum, between the two relays to work so it’s of limited usefulness unless one is a high value target.
@@Alexlfm An outdoors wifi repeater can go miles in the right circumstance. And nothing states it has to be wifi. Something like 3G would have the bandwidth and latency to easily go dozens of miles, given enough power.
when did "reverse bluetooth full access" happen with early bluetooth nokias? heck the bootloaders didn't even get hacked until they weren't current.
what was possible was to obex whatever over like .sis files or whatever and the owner of the phone might install it or not.
edit: early s60 if you got the owner to pair it you could silent install through it same as nokia pc-suite, it was pretty handy for development.
@@smoothbraindetainer A cell connection won’t work. Latency limits are going to limit it to under 100ms of latency (at the most) and anything that goes out to the wider internet will introduce a higher chance of dropped or out of order packets. When you add in processing/OS overhead and the number of cycles that eats up, you need something with, I’d say no more then 10-20ms of latency for the link and ideally point to point. 2.4ghz Wi-Fi would likely be too slow and WAY too unreliable with interference leaving 5ghz which is going to have a limited range when not in line of sight.
Genuinely love seeing things about cyber security on cars, I graduated this year in the field and it’s interesting to see another vector of attack on new tech
There is a more advanced version of the replay attack. When the victims presses their fob you receive and jam that signal. A normal person will just push the fob again. Now you receive the signal, jam it and replay the original signal. The original unlocks the car. Now you have one signal into the future to use later.
Depending on how well the car was designed this could be exploited many different ways. For example if the lock/unlock is separate from the code then capturing any event works. capture several lock events then switch out the lock for an unlock. Also cars often have a resync feature where if multiple correct codes are presented in a row a car assumes that the fob lost sync and resyncs. If enough codes are captured in a row this resync can be done at any time.
Good reason to use pin to drive feature, at least to slow them down more
Justin is the perfect addition to the team, the last few videos he's been on have been very entertaining and just seems like a cool dude to be around!
11:03 "FIX IT ELON" hahahahah
Worst thing any car owners can possibly experience of:
1. No gas station or electric charger before fuel runs out (Or a broken charger)
2. Any possible breakdown like "Check Engine", "Check Electric Vehicle System"
3. *Sultan with a random stuff*
How far away can you drive it though? Does it keep checking for the phone and lockout at some point down the road? I have been in my honda parked and running when my wife walked away with the fob and it started beeping and then shut off after a few minutes.
Vehicle markups are crazy thank you for showing me a cheaper way to get a car🙏🏾
Wait until market slows and buy a used older model. Less Hassel, less money 💰
It’s so great watching little bits and pieces of the donut office. Im pretty sure a lot of people, me included, would love it if you guys could do an office tour. 💛
2021 : breakin into a car
2022 : hacking into a car
Now I wanna see a video detailing the encryption and security keyfobs use to try and prevent replay attacks because that is super cool
It's called a rolling code system. It's not that interesting but it's designed to stop this attack
I love this channel and it makes me really happy to see this video, I'm very into cyber security and i think it's important for people to see these vulnerabilities in action so they know how realistic it is in a day-to-day scenario and are maybe able to take better precautions on to help themselves stay secure
Scam
Donut Media is the MOST INFORMATIVE automotive channel in the goddamn planet! Uncle Jerē, James, Zach, Nolan, Eddie, and Freeman, thank you guys for doing this show. Legend status 👊🏿💯😎
All you need is 2 of the first device you just got and gnu radio... you do know that is a hacker tool that has a wide band range...
I doesn't handle Bluetooth that well because of the band hopping but it should be easy to do a repeat attack.
I remember this being a thing back in the early 2000s, and probably even earlier! Surely you can put 2 factor auth into a keyfob and encrypt the unlock signal to only work at the exact time it was broadcast, within 1-2000 milliseconds to account for occasional drift, which you can adjust for each time you (physically!) plug the key into the car. Those keyfobs already exist and don't use too much battery, they already run on tiny batteries, I'm almost positive you could put these into keyfobs as standard and it wouldn't up the manufacturing cost more than a few tens of cents, save for R&D + testing and quality assurance etc. -- I suppose that's why it hasn't been done, these hacks are just not that prevalent I suppose to warrant the cost.
The tesla hack is more crazy in a way, but given how much of a super expensive tech product a tesla is I really did expect tesla to have solved that particular trick with some way of verifying it's the real key near the car. The only way I can think of to beat the tesla hack is to have a 2 factor auth code, but refreshing every 5 milliseconds. Yeah, 5ms is a little tight but that way a repeater would simply add too much delay and the 2 factor codes wouldn't match up. 5ms is a pretty tight tolerance so I'm not sure how well it'd work out in the real world with something that uses a tiny battery like a keyfob.. but maybe it could work
The 15 second unskippable ad was worth it
Just gotta say I love how you guys filmed all around the office instead of in front of a lame green screen. We need to see more of the office in videos! Gives more of a bts feel that I like.
Love how he just turned on dark theme and he is the dark web 😂
this was funny
Convenience over security. Wins every time.
TBH Even though I'm not a fan of EVs I have to give Tesla props for continuously patching their cars.
Clean set up on the Catfish!
What wheels are those?
I've said this before but for those with keyless entry systems, the best and cheapest way to foil a relay attack is to put your keys in a covered Danish cookie tin. The cookie tin acts as a faraday cage and does not allow RF out. Make sure the the container is 1) made of steel and 2) actually seals. Hope this helps.
Doesn't fit in the pocket as easily though.
They sell copper mesh lined pouches that also do this same thing for wallets and passports.
Doesn't work, the newest method now is to reprogram your key with OBD2 ports or your ECU while using factory keyfobs to unlock the door.
aluminium or mylar foil a BIT easier -n- cheaper, innit?
What do you do with the cookies?
Where did u get that jack stand rack on the wall ? 🤔👀
Agreed. If you really want a car you can get it. I say in Tesla world just enable pin to drive for an added layer of protection. (Sorry if this has been mentioned)
As a internet and network specialist, this is scary. Airline carriers want to put this kind of tech into airplane cockpits. They don't want to follow the KISS rule.
Other than small GA craft, airplanes don't have security features beyond a locking cockpit door. They use being parked in secure areas, and the large amount of knowledge needed to start one up and fly it as their security.
How do they want to apply this sort of tech in an airplane?
I'm also curious, how would this apply to passenger/commercial aircraft? Especially where pilots swap, revoking access seems like it would be an issue
That was freaking incredible. High Five on the research.👍👍👍
I feel like once you are out of range of the key something should happen. I suppose you can't just shut down the car as having your phone die and the car shutoff would be pretty bad, but something to that effect should help. Maybe limit the milage without a key or phone signal, so you can plug in your phone if you have the real one and if you have the repeater you are sol after maybe 5 miles. Seems reasonable as a setting that could be made and owners to be informed of.
Hyundai, Kia and now Tesla.. thanks guys we couldn't do without you guys 😎👍
10:15 “steal that tesla” 😂😂
I’m a loser because I laughed too hard at the dark web and you clicked dark theme. Nailed it! 🤣🤣 🙌
That was very funny!!
Same. Wife couldn't understand why I was laughing
At least tesla will update this, the beauty of OTA updates, and plus if my model y got stolen, I'd shut it off on the middle of the streets, it's a smart car, maybe they should also add face recognition depending on what phone key is driving for harder security, so many things to fuck up bluetooth relaying
this happens constantly in south africa... but instead of using a replay attack they just roll around a parking lot waiting for rich people to come park, play a signal which prevents the key fob from communicating with the car when the LOCK button is pressed...
_Elon want to know your location_
Donuts next video:
CAR THIEVES ARE GETTING OUT OF HAND
Surely fingerprint activation has to be included into car security tech such as door handles, steering wheels, obviously the keyfob themselves or even face recognition built into dashboard, windscreen, rear view mirror. ? The fingerprint or face recognition has to be a second verification security bridge to cross! Ford and Tesla I'll take one percent for this heads up!
Armed with nothing more than a vehicle identification number, hackers were able to access the remote services for cars from Acura, Honda, Infiniti, Kia, and Nissan, including locating and unlocking the cars, starting or stopping the engines, or honking the horns. 😳😱
Love Jerry’s solo vids, such a cheeky chap
As a telecom engineer, who likes cars, and works in the cybersecurity industry, I approve this video! (Except for the "dark web" part LOL)
The dark web is just over rated. The site you found to buy that legally questionable basil is just going to scam you.
It got sp00ky on the dark web.
So you work for telecom in cyber security yet you approve a imsi catcher for public use?
Weird, it's like no matter how much security against something you put, unless you make it impossible, they're gonna keep doing it.
Installing a kill switch somewhere is a good way to delay the theves. Well, on gas cars at least.
Good luck though with the EV's
Simple way to fix. Notify the owner that car has been unlocked and/or possibility to add a face recognition to unlock the car. Plus could be added a GPS feature. If car is 50m away but has been unlocked someway car won’t start up. If phone GPS doesn’t matches with car GPS position car shouldn’t be fooled by any signal.
This video slaps, more car software/hardware exploit content would be great!
Sus... Yo in got a friend called "AlibiAlibiAlibi"?? 🤣😂
This stuff is interesting! How about an exploit that controls your car and one where the car remotely shuts off during motion!