Cars Being Stolen With Keyless Entry
If car owners place their keys on the table or next to their door, they may unknowingly be allowing thieves to hijack their signal. This relay attack is one of the latest techniques criminals are using to steal brand new keyless cars.
All keyless ignition cars emit an low-power radio signal that is seeking a compatible fob that can respond. If the signal is captured and recreated, it could be used unlock the car and start it.
Relay Attack
Imagine your car being parked safely in the driveway, and the key fob safely inside your home. You're confident that your car is safe, but not seen by you sophisticated thieves are planning a heist. Instead of breaking windows or jimmying locks, these thieves are leveraging technology to hack into cars via digital chinks in their armor. Also known as relay theft, it's a more common way to steal cars with keyless entry.
Cars equipped with keyless entry are designed to operate using a signal sent from the remote control (RF) transmitter to the owner's key fob. To prevent unauthorized keyless entry, the RF transmitters in the key fob as well as in the car are programmed to only be activated when they're within a certain distance of each other. However, thieves can overcome this limitation using a technique known as the'relay attack'.
To accomplish this, two people work in tandem One stands near the car with an instrument that records digitally the key fob's signal. The other person who is at the owner's home, uses a second gadget to transmit the signal from the key fob back to the car. This trick tricks the car into thinking the key fob is near enough to be able to unlock it and start the engine.
This kind of heist used to require expensive equipment. Now, you can purchase a relay transmitter on the inexpensive online market and carry out a heist in minutes. This is why car thieves love it.
While certain vehicles are less susceptible to this kind of theft than others, all modern cars that have keyless entry are vulnerable. Researchers have examined 237 well-known cars and found that every one of them are susceptible to being stolen using this method.
Tesla cars are said to be less prone to this kind of theft, however Tesla hasn't yet implemented UWB features to effectively conduct distance checks on the car's signal to stop relay attacks. The company has promised to implement this feature in the near future, but for now they are vulnerable. That is why it's important to take a proactive approach to your vehicle security and install an anti-theft tool which protects your keys as well as your the car from such attacks.
CAN Injection Attack
Modern cars can protect themselves against thieves by sending encrypted messages to the key in order to confirm its authenticity. The system is thought to be secure, however thieves have found ways around it. They impersonate a smart key, send messages to the vehicle and then drive away. To do this, they gain access to the smart keys' internal communication network.
Most cars today are equipped with between 20 and 200 electronic control units, or ECUs, that control different aspects of the vehicle's operation. They communicate using a network called CAN bus. These ECUs are put into a low power sleep mode to lower their power consumption. This mode is activated when ECUs receive an "wake up" frame. These frames are typically sent from the door or smart key receiver ECU. These messages are not always authenticated or encrypted. This means that criminals are able to capture them using a simple and cheap device.
They search for a location that allows them to connect directly to the CAN connection wires. These are often hidden away inside the headlights or elsewhere in the front of the vehicle, and are accessible by pulling the bumper off and cutting holes in the headlamp assembly to expose the wires. The thieves then employ a device dubbed a CAN injection attacker to send out fake messages that fool the security systems of the car into unlocking the car and disengaging its engine immobilizer.
These devices are for purchase on the Dark Web, and work for most of the major car makers which include BMW, Cadillac, Chrysler, Fiat, Ford, Honda, Hyundai, Jaguar, Jeep, Lexus, Nissan, Renault, Toyota, Volkswagen, Maserati, and more. The researchers who discovered this CAN Injection attack are recommending that all car makers fix it in their existing models, but the fact is that the thieves will continue to steal whatever they can get their hands on. We can prevent this by installing mechanical safety measures like Discloks in all of our cars and parking them in well-lit, well-lit areas.
Blocking the Signal
In a different variation of the relay attack, thieves may use a gadget to jam the signal from an electronic key fob if the car is locked. The device could be in the pocket of a burglar in a parking lot or in a hideout close to the driveway that is being targeted. Once the owners press the button to lock their fobs, and then walk away, more info they don't think about whether or not their car is really is locked. The device used by the criminal interferes with the signal to lock the car. Therefore, thieves could escape with the car.
The crooks also employ devices to amplify the signal from the key fob in order to unlock vehicles. They may even do this while the key is inside the pocket of the driver or hanging from its hook inside the house. Once the car has been unlocked, hackers can use the standard diagnostic port to program an unlocked fob.
To safeguard against this kind of attack, car makers have developed a variety of anti-theft devices. However, thieves will always come up with ways to thwart these measures.
They've been using devices that transmit at the same frequency as remote keyfobs to intercept signals. The crooks then copy the unlock code of the key fob and start the car with this fake signal.
This method is particularly popular in the US where a lot of cars are equipped with wireless technology. Owners can unlock and start their vehicle by using a mobile app on their phone. This technology is likely to become more popular as more and more manufacturers attempt to link their vehicles to owners' smartphones.
It is crucial that drivers follow the best practices to park their vehicles. They should not leave their keys in the ignition and always secure the car when not in it. If they can they should also utilize the gearstick or steering locking device. It is also recommended to consider installing a tracking device to their vehicle in the event that it gets stolen.
Flat Battery
This kind of attack happens more often than we think. Thieves make use of cheap devices to extend the signal from your key fob to open and start a car even when it's turned off. They then simply drive the car around the corner or onto a trailer to leave with it. It is possible to shield your vehicle from this by installing a starter circuit interrupt switch. The simplest ones just have an ON/OFF switch that shuts off the starter circuit. It is priced at around $15 and is simple to install.
Car thieves are always working on new ways to enter vehicles and steal them. Police, car manufacturers and insurance companies are always trying to stay on top of the latest methods and offer more effective anti-theft systems for modern vehicles. But this doesn't stop thieves who can easily adapt and find ways to circumvent the latest anti theft measures.
Many thieves block the signal by using devices that operate on the same radio frequency as the fob. The device is tucked away in the pocket or close by the vehicle and prevents the fob from transmitting the signal to the car. This can be done in a matter of seconds. The device is affordable and easily accessible on the internet.
Hacking the computer system of the car is an alternative option. This is more difficult but possible. Every car has an diagnostic port, and hackers have developed devices that connect to them and let them access the software in the car. They can then program an unfinished fob to work. It is possible to do this on older vehicles too however it is more difficult if you remove the ignition.
This method is likely to become more popular if more vehicles are connected to drivers' mobile phones. Once a criminal has the username and password for a vehicle app they are able to unlock or start the car using the app on their phone. You can protect yourself by not leaving valuables inside your car, and parking in garages.