Cars Being Stolen With Keyless Entry
If car owners throw their keys on the table or near their doors, they could unknowingly be allowing thieves to steal their signal. This relay attack is a high-tech technique used by criminals to steal keyless vehicles.
All keyless ignition vehicles emit a low power radio signal that is used to locate the fob that matches. If the signal can be recorded and recreated, it could be used unlock the car and start it.
Relay Attack
Imagine your car at your driveway, with your key fob at home. You may be confident that your car is safe but sophisticated thieves are planning a heist without you being aware. Instead of slamming windows or jiggling locks, they are using technology to gain access to cars through digital chinks in their armor. This method of stealing vehicles with keyless access is called relay theft.
The keyless entry system that is found in cars is controlled by a signal sent by the car's radio transmitter to the key fob. To stop keyless entry by unauthorised persons the RF transmitters that are on the key fob as well as the car are programmed to activate when they are within a specific distance from one another. However, thieves are able to overcome this limitation using a technique called the 'relay attack'.
Two people are required to complete this: one stands close to the car and uses a device to capture digitally the the key fob. The other person, who is at home with the owner, uses a second gadget to transmit the signal from the key fob to the car. This trickery tricks the car into believing the key fob has traveled the distance needed to unlock and start the vehicle.
In the past, this type of heist required expensive equipment in order to execute. It is now possible to purchase an inexpensive relay transmitter online and pull off an heist in a matter of minutes. This is the reason why car thieves love it.
While certain vehicles are less vulnerable to this type of theft than others, all modern vehicles that have keyless entry are vulnerable. Researchers have tested 237 of the most popular cars and found that every one of them are susceptible to being stolen by this method.
Tesla vehicles are supposedly less vulnerable to this type of theft, however, Tesla hasn't yet implemented UWB features that would effectively conduct distance checks on the car's signal to protect against relay attacks. The company has said that they'll implement this in the near future, but until then they are vulnerable. This is why it's crucial to be proactive about your security in your car and install an anti-theft device that safeguards your keys and the car from such attacks.
CAN Injection Attack
Modern vehicles are designed to guard themselves from theft by exchanging cryptographic messages with the key to prove that it's authentic. The system is thought to be secure, but thieves have found ways to get around it. They pretend to be the smart key, then send messages to the vehicle, and then drive off. To achieve this, they need access to the smart keys' internal communications network.
Nowadays, the majority of automobiles are equipped with between 20 to 200 electronic control units (or ECUs) which control different aspects of the car's operation. They communicate via a network called CAN bus. These ECUs are put into a low power sleep mode to lower their power consumption. This mode is activated when the ECUs receive a "wake up" frame. These frames are typically sent through the door or a smart key receiver ECU. These messages aren't always authenticated or encrypted. This means that criminals are able to intercept them with the use of a cheap and simple device.
To do this, they look for a place that allows them to connect directly to the CAN bus connection wires. They usually hide in the headlights, or in other areas of the front of the vehicle. To access them, you can pull the bumper and cut holes in the headlamp assemblies. The thieves employ the device referred to as an CAN injection attack. It is used to send out fake messages that can trick the security systems of the car to unlock and disable the engine immobilizer.
These devices can be purchased on the Dark Web and work with the majority of major car manufacturers, including BMW and Cadillac, Chrysler, Fiat and Ford, Honda, Hyundai and Jeep, Lexus and Nissan, Renault and Toyota, Volkswagen and Maserati. The researchers who discovered this CAN Injection attack are recommending that all car makers address it in their existing models, but the reality is that these thieves will continue to steal whatever they can get their hands on. We can stop this by implementing mechanical safety measures like Discloks in all of our cars and parking them in well-lit, well-lit areas.
Jamming the Signal
In a different variation of the relay attack, read more thieves may use a gadget to jam the signal from the key fob when the car is locked. The device could be found in the pocket of a thief in a parking lot or in a hidden spot near the driveway that is being targeted. Once owners hit the button to lock their fobs, and then walk away they don't consider whether or not the car really is locked. Instead, thieves could escape with the vehicle because the signal that normally locks the car has been blocked by the device of the criminal.
The crooks also employ devices to amplify the key fob's signals to unlock vehicles. They can do this when the key is in the pocket of the driver or hanging from a hook in the house. When the car is unlocked, they can make use of a standard computer hacker to program a blank key fob and gain control over the vehicle.
To safeguard against this kind of attack, car makers have developed a variety of anti-theft gadgets. But thieves always come up with ways to thwart these measures.
They've begun using devices that transmit at the same frequency as remote keyfobs in order to intercept signals. The thieves then copy the unlock code of the key fob and begin the vehicle with this fake signal.
This method is particularly popular in the US and Europe where many cars are equipped with wireless technology that lets owners unlock and start their cars by using a mobile application on their phone. This technology is likely to be more commonplace as more companies attempt to link their cars with their owners smartphones.
It is essential that drivers follow the right procedures when parking their vehicles. They should never leave their keys in the ignition and secure the car when they are not in it. If they can they should also utilize a steering or gearstick locking device. They should also consider installing a tracking device on their vehicle in case it is stolen.
Flat Battery
This type of attack occurs more often than we think. The thieves use low-cost devices that increase the signal of your key fob in order to unlock and start your car, even when it's off. They then simply drive the car around a corner or onto a trailer to then drive off with it. Installing an interrupter switch for the starter circuit can protect your vehicle from this. The simplest ones just have an ON/OFF switch that shuts off the starter circuit. It costs around $15 and is simple to install.
Car thieves are always seeking new ways to rob vehicles. The police as well as the car makers and insurance companies are constantly trying to keep up to their tactics and develop better anti-theft systems for modern cars. However, this isn't stopping thieves who easily adapt and find ways around the latest anti theft measures.
For instance, a lot of criminals employ a device that works on the same radio frequency as the fob in order to block the signal. They place the device in their pocket or somewhere near their vehicle, and it stops the fob's lock signal from reaching the vehicle and thereby leaving it unlocked. This can be accomplished in just a few seconds. The device is inexpensive and easily available on the internet.
Another tactic is to hack the car's computer system. This is more difficult, but possible. Hackers have developed devices that connect to the diagnostic port of all cars and allow them to connect to the software. From there, they can program an unfinished key fob and make it work. This is also possible on older vehicles, however it is more difficult to do without removing the ignition lock.
This technique could be more popular if more vehicles are connected to drivers' phones. Once a thief gets the username and password for an app for vehicles they are able to unlock the car or start it with the app on their phone. Fortunately, you can defend yourself from these kinds of attacks by not putting valuables in your car, and then parking it in a secure garage or parking lot.