India’s leading vehicle pentest company, HackersEra, has devised a novel method where the passive keyless entry and start systems in high-end cars can be hacked. This makes it much more difficult for criminals to break into the keyless entry system and make off with expensive luxury vehicles.
HackersEra’s researchers, under the guidance of its CEO, Vikash Chaudhary, carried out extensive research with the intent to inform automakers about the potentially game-changing method in the keyless entry system in high-end cars. The researchers devised a novel vector attack for the vehicles' passive key entry and start systems.
An intruder can exploit vulnerabilities in keyless entry and start systems using a "relay attack," a digital theft technique. Initially, the attacker stands close to the vehicle owner and uses a special device to transmit the signals he detects to an accomplice. The second assailant stands as close to the vehicle as possible while holding the second device, which can transmit the signal relayed by the first assailant. Since the vehicle responds normally to the signal, the security system concludes that the owner is nearby and unlocks the door.
Advertisement
Vikash Chaudhary, CEO of HackersEra, stated, "An intruder can steal valuables from a vehicle by remotely unlocking it without the customer touching or pressing the key, starting the vehicle, and fleeing with it." In addition, once the door is unlocked, an attacker can exploit a CAN bus vulnerability to cause damage by connecting a wireless OBD-II dongle. We are all aware that tampering with CAN bus message injection while driving can result in a car accident, which is a grave matter because a person's life may be in danger.
HackersEra alerts government officials and automakers of security issues with the keyless entry system and the start ignition. The stakeholder must create a system to safeguard the automobile industry's cyberspace of automobiles. It is not always obvious which insurance companies will cover a stolen vehicle or lost property. How frequently do Indian automakers conduct penetration tests on their products, and are they obligated to keep buyers apprised of the status of cybersecurity reports? What steps will automakers take if a collision causes serious injuries or fatalities?
Advertisement
The Role of Automakers in Cybersecurity
The vulnerability of connected vehicles to cyberattacks is increasing. This requires vehicle manufacturers, service providers, and vehicle owners to implement safety measures. Automakers can guarantee the safety of their vehicles by implementing cyber security solutions for the automotive industry. HackersEra deserves our sense of trust since it provides innovative services to more than 15 OEMs and 10 vehicle manufacturers.
