12:11 GMT01 August 2021
Listen Live
    Tech
    Get short URL
    333
    Subscribe

    The update was released in response to a hack carried out by a cybersecurity firm last week, who found flaws in the car's security system which could allow hackers to take control of the vehicle.

    Car manufacturer Tesla has released an over-the-air update for its Model S car, after cyber security experts exposed security flaws that would allow a hacker to take control of the vehicle. 

    Security researchers Kevin Mahaffey, chief technology officer of Lookout, and Marc Rogers, principal security researcher at Cloudflare demonstrated the hack to delegates at the cyber security conference Def Con in Las Vegas on Friday.

    After physically connecting a computer to the car via an ethernet cable, they were then able to access certain systems in the car, and also install a Trojan horse allowing remote access.

    The 'white hat' hackers, who carry out hacks in order to eventually improve security, said that they were motivated to try the hack on Tesla after reports of major security vulnerabilities in cars from Fiat Chrysler and GM. 

    "My colleague Marc Rogers and I set out to audit the security of the Tesla Model S because we wanted to shine a light on a car that we hypothesized would have a strong security architecture, given the Tesla’s team’s deep software experience," explained Kevin Mahaffey.

    "I really want to thank you guys. You're making the product better and safer," responded Tesla co-founder JB Straubel at the Def Con security conference, where the experts showed the audience how they carried out the hack.

    Security expert Samy Kamkar hacked GM's OnStar in-vehicle system.

    In contrast to the over-the-air updates issued by Tesla and GM, last month Fiat Chrysler sent a USB stick to the owners of 1.4 million Jeep Chryslers with a software update to fix the cars' software problem, which allows hackers to wirelessly hijack the car. 

    View through a sniper's rifle
    © AP Photo / Alexander Zemlianichenko
    Though the Tesla hack was more difficult – the researchers had to physically access the Model S first – they found six security flaws which allowed them to access the vehicle's components. 

    The vulnerabilities allowed them to leave behind a Trojan horse and gain access to the instrument cluster above the steering wheel, and the 17-inch touchscreen center information display in the middle of the dashboard, which they hackers were then able to use to remotely open and close the trunk, lock and unlock the doors and even start and stop the car.

    Related:

    Russia Blamed for Pentagon Hack, Once Again, Without Evidence
    Hacking Conference to Start in Las Vegas on Thursday
    Security Expert Names Six Ways to Hack US Elections
    At Least Six Ways to Hack the 2016 Election
    Tags:
    US, Tesla, Tesla Motors, GM, General Motors (GM), Fiat Chrysler, Chrysler, car, hacker, hackers, hacker attack
    Community standardsDiscussion