Cars Being Stolen With Keyless Entry
If car owners leave their keys on the table or near their doors, they could unknowingly allow thieves to hijack their signal. This relay attack is just one of the high-tech methods criminals are employing to steal new keyless cars.
Keyless ignition cars emit an low-power radio signal that is seeking a compatible fob that can respond. If the signal is recorded and recreated, it can be used to unlock the car and start it.
Relay Attack
Imagine your car safely in your driveway, and your key fob in your home. You're confident that your car is safe, but not seen by you sophisticated thieves are planning an heist. These thieves use technology to hack into vehicles via digital chinks. Known as relay theft, it's a more common method of stealing vehicles that have keyless entry.
The keyless entry system found in cars is controlled by a signal sent by the car's radio transmitter to the key fob. To stop unauthorized keyless entry the RF transmitters on the key fob as well as in the car are programmed to only activate when they're within a specific distance from one another. However, thieves can bypass this restriction by employing a method known as the'relay-attack'.
To accomplish this, two people work in tandem one is positioned by the car and uses a device that captures digitally the key fob's signal. The other, who is at the owner's house and using a second device to send the key fob's signal down to the car. This trickery fools the car into thinking the key fob is near enough to unlock and start it up.
This type of attack used to require expensive equipment. Now, you can buy relay transmitters on the low cost online and conduct an heist in a matter of minutes. This is why it's popular with car thieves.
All modern vehicles that have keys are at risk. Some cars are more susceptible to this type than others. In fact researchers have examined 237 popular vehicles and found that they can be all stolen using this method.
Tesla cars are said to be less prone to this kind of theft, but the company has not yet implemented UWB features that would effectively perform distance checks on the car's signal to protect against relay attacks. The company has said that they will do this in the future but until then, they are vulnerable. That is why it's important to be proactive about your car security and install an anti-theft device which protects your keys as well as your the car from such attacks.
CAN Injection Attack
Modern cars can protect themselves from theft by exchanging encrypted messages with the key to confirm its authenticity. This method is generally thought to be secure, but thieves have found a way around it. They fake the identity of a smart key, transmit messages to the vehicle, and then drive off. To do this they have access to the smart key's internal communication network.
These days, most cars are equipped with between 20 to 200 electronic control units (or ECUs) which control different aspects of the car's operation. They communicate with one another using the CAN bus. To reduce power consumption they ECUs enter a low-power sleep mode that's activated when they receive a wake up' frame. These frames are typically sent via the door or smart key receiver ECU. However the messages aren't usually authenticated or encrypted, which means that they can be intercepted by criminals with a cheap and basic device.
They search for a spot that allows them to connect directly to the wires for CAN connection. They are usually hidden in the headlights, or in other areas of the front of the vehicle. To get them, you can pull the bumper and cut holes in the headlamp assemblies. The criminals then employ a device known as an CAN injection attacker, which is used to send fake messages which trick the car's security systems into unlocking it and disengaging the engine immobilizer.
These devices can be bought on the Dark Web and work with all major car makers including BMW and Cadillac, Chrysler, Fiat and Ford, Honda, Hyundai and Jeep, Lexus and Nissan, Renault and Toyota, Volkswagen and Maserati. The researchers who discovered this CAN Injection attack are recommending that all car manufacturers fix the issue in their current models, but the fact is that thieves will continue to steal everything they can lay their hands on. We can prevent this by implementing mechanical safety measures, such as Discloks inside all our vehicles and parking them in well-lit and visible areas.
The Signal is blocked
In a variant of the relay attack, which makes use of a device that is able to block the signal transmitted by a key fob while the car is locked. The device could be hidden in the pocket or hiding the location of a thief in the parking lot, or in the driveway that is being targeted. When owners press the button to lock their fobs and walk away they don't consider whether or not the car actually locks. Instead, thieves could escape with the vehicle because the signal that normally locks the car has been blocked by the device of the criminal.
The crooks also use devices to enhance the signal of the key fob to unlock vehicles. They can do this while the key is in the pocket of the driver or hanging from a hook inside the house. After the car is unlocked, hackers can make use of the standard diagnostic port to create the fob with a blank.
Automobile manufacturers have come up with a range of anti-theft systems to safeguard against these types of attacks. But, thieves are constantly finding ways to beat these measures.
For instance, they've been using devices that transmit on the same radio frequency as remote key fobs to intercept their signals. The crooks then copy the unlock code from the key fob and begin the vehicle using this fake signal.
This method is particularly popular in the US where a lot of cars come with wireless technology. Owners can unlock and start their vehicle by using a mobile app on their phone. This technique is likely to become more popular as more manufacturers try to link their cars with their owners smartphones.
In addition to incorporating anti-theft technology in vehicles, it's important for drivers to use the best practices when parking their vehicles. It is not a good idea to leave keys in the ignition. They should here always ensure that the vehicle is locked completely when they're not using it and should make use of a steering wheel or gearstick lock if possible. They should also consider installing a tracking device onto their vehicle in the event that it's stolen.
Flat Battery
This kind of attack occurs more often than we think. Thieves make use of inexpensive devices to extend the signal from your key fob to open and start a car even when it's shut off. They then drive the car around the corner or even to a trailer and then drive off with it. Installing an interruption switch to the starter circuit would protect your car against this. The most basic ones have an ON/OFF switch that shuts off the starter circuit. It's about $15 and is simple to install yourself.
Car thieves are always looking for new ways to gain access to vehicles and take them away. The police, car makers and insurance companies are always trying to catch up to their tactics and develop better anti-theft systems for modern vehicles. But this does not stop thieves who are able to easily adapt and find ways to bypass the most recent anti-theft measures.
Many thieves jam the signal using a device that uses the same radio frequency of the fob. The device is put in the pocket or near the vehicle and prevents the fob from sending the lock command to the car. This can be done within seconds. The device is affordable and easily accessible on the internet.
Hacking the computer system of the car is another option. This is more difficult, but still feasible. Every car has an diagnostic port, and hackers have created devices that connect to them and let them access the software in the car. They can then program the fob with blank code to function. This is also possible on older vehicles, but it is more difficult to do without taking off the ignition lock.
As more vehicles are connected to drivers' phones, this method may become more popular too. Once a thief gets the username and password for a vehicle app they are able to unlock the car or start it by using the app on their phone. You can help defend yourself from these kinds of attacks by not leaving valuables in your car and parking it in a garage or secure parking lot.