Drive a Volkswagen? Think Twice About Using Keyless Entry

...

A keyless car entry system used in Volkswagen vehicles for two decades can easily be hacked, according to a new report.

Computer security experts at the University of Birmingham in England this week published a paper highlighting the insecurity of remote keyless entry systems.

The feature—found in most VW Group vehicles manufactured since 1995—relies on a few global master keys. A nearby hacker can simply eavesdrop on and clone the driver's key fob, and voila!—they gain unauthorized access to the car.

"Our findings affect millions of vehicles worldwide and could explain unsolved insurance cases of theft from allegedly locked vehicles," the research team, led by computer scientist Flavio Garcia, said in a paper.

Vulnerable vehicles include Audi, VW, Seat, and Škoda models sold over the past two decades; a VW spokesman, however, told Reuters the current Golf, Tiguan, Touran, and Passat models are safe from harm.

VW did not immediately respond to PCMag's request for comment.

Owners of affected vehicles should be wary of unlocking their car doors remotely. Using cheap, off-the-shelf equipment, the wireless hack can be executed from about 20 yards away. Leaving no physical traces, it poses "a severe threat in practice," the researchers said.

Garcia and fellow University of Birmingham lecturer David Oswald are scheduled to present their paper today at the Usenix security conference in Austin.

In 2013, Volkswagen thwarted an attempt by Garcia and his team to publish a paper detailing how certain anti-theft car immobilizers were vulnerable to hackers, Reuters reported. The research was made public last year, after the authors agreed to pull certain details that explained how to carry out an attack.

Garcia and a different set of researchers in November disclosed their latest findings to VW Group, Reuters said.

Categories
GAMES
0 Comment

Leave a Reply

Captcha image


RELATED BY

  • 5300c769af79e

    IDG's New Pipeline Activator Aims to Get Sales Timing Right

    The company has more than 700,000 line of business and IT decision makers from the Forbes Global 2000 in its database.For example, a cloud solution provider can use Pipeline Activator to identify sales prospects and track their intent to purchase, so it can target sales and marketing activity more effectively at the best time to increase the chance of closing a sale.
  • 5300c769af79e

    Managing and Securing Enterprise Mobility

    Download It is becoming increasingly difficult to remember a time when companies and individual workers did not rely on mobile devices such as smartphones, tablets and laptops.Among these are managing the variety of devices and operating systems, and making apps and updates easily available to users.
  • 5300c769af79e

    Qualcomm Teases Snapdragon 835 Detailing for CES

    At long last, all the details and nitty gritty for the upcoming Snapdragon 835 will be detailed at CES next week.In a tweet sent out from Qualcomm’s official account, the company states, “Our Snapdragon 835 processor will come into focus at CES 2017.
  • 5300c769af79e

    Android N Name Reveal Coming in a "Few Weeks"

    This morning, the official Android Twitter account gave us a timeframe of sorts for when we can expect to find out what the “N” in Android N will stand for.Their plan is to reveal the name in a “few weeks,” which, at least to me, sounds a lot sooner than initially expected.