570

The researchers will present their research next week at the Black Hat cybersecurity conference in Las Vegas.

Christian Werling, one of the three students at Technische Universität Berlin who conducted the research along with another independent researcher, said that their attack requires physical access to the car, but that’s exactly the scenario where their jailbreak would be useful.

“We are not the evil outsider, but we’re actually the insider, we own the car,” Werling told TechCrunch in an interview ahead of the conference. “And we don’t want to pay these $300 for the rear heated seats.”

The technique they used to jailbreak the Tesla is called voltage glitching. Werling explained that what they did was “fiddle around” with the supply voltage of the AMD processor that runs the infotainment system.

“If we do it at the right moment, we can trick the CPU into doing something else. It has a hiccup, skips an instruction and accepts our manipulated code. That’s basically what we do in a nutshell,” he said.

With the same technique, the researchers said they were also able to extract the encryption key used to authenticate the car to Tesla’s network. In theory, this would open the door for a series of other attacks, but the researchers said they still have to explore the possibilities in this scenario.

The researchers said they were also able to extract personal information from the car such as contacts, recent calendar appointments, call logs, locations the car visited, Wi-Fi passwords and session tokens from email accounts, among others. This is data that could be attractive to people who don’t own that particular car, but still have physical access to it.

Mitigating the hardware-based attack that the researchers achieved is not simple. In fact, the researchers said, Tesla would have to replace the hardware in question.

Tesla did not respond to a request for comment.

top 50 comments
sorted by: hot top controversial new old
[-] MrPoopyButthole@lemmy.world 109 points 1 year ago

If I rent something then feel free to offer me upgrades to that rental (like rear heated seats) but if I purchased the product then fuck off its mine and I should be able to do what I want with all of its hardware.

[-] remotelove@lemmy.world 27 points 1 year ago

I feel the same.

If I ever get a Tesla, which I won't, it would get hacked to shreds. I am not a fan of getting something sold to me that I already purchased.

[-] Black_Gulaman@lemmy.dbzer0.com 6 points 1 year ago

The only problem I see with that is, once they notice that you tampered with the car, they will deny service of repair and maintenance work.

[-] remotelove@lemmy.world 18 points 1 year ago

Don't they deny service and ignore complaints of legit customers anyway? That is super-shady, if true.

[-] Black_Gulaman@lemmy.dbzer0.com 6 points 1 year ago* (last edited 1 year ago)

yeah they do that to legit customers. but I'm assuming that they have a special kind of "package" for those who dare circumvent the drm implemented by Elon. because, as we know, he has a fragile ego and defying him would mean unleashing his petty hell unto these customers.

[-] Thorny_Thicket@sopuli.xyz 20 points 1 year ago

I wish people would apply this logic to Apple aswell but they generally seem to let it slide because they like the company

[-] gapbetweenus@feddit.de 8 points 1 year ago

I use a macbook, what functions are looked behind a paywall? Curious what am I missing.

[-] Thorny_Thicket@sopuli.xyz 9 points 1 year ago

I'm not sure about macs but on iPhones several components are coded to that specific device so it limits functions if you take it get repaired anywhere else but at Apple.

[-] gapbetweenus@feddit.de 3 points 1 year ago

Ah, forgot about it - don't have an iPhone. But that is also really shitty, but a bit different. Apple has for sure some shitty practices - there is no arguing around it.

[-] Thorny_Thicket@sopuli.xyz 4 points 1 year ago

The main point is that since it's your device you should be allowed to do what ever you like with it including repair it yourself. In that case it feels a bit like you're renting it because every time something goes wrong you need to take it back to Apple.

[-] gapbetweenus@feddit.de 1 points 1 year ago

No arguing from my side. Now that you say it - I need to replace a battery on an older macbook and don't do it, because it's expensive and I'm too lazy to do it my self, since it's unnecessary complicated.

[-] Dark_Blade@lemmy.world 5 points 1 year ago

With Apple, people generally let it slide because electronics aren’t as expensive and don’t last as long. Cars, on the other hand, are extraordinarily expensive and they’re supposed to last a lot longer than a phone.

Plus, at least Apple doesn’t (for example) charge you extra just to ‘unlock’ more performance on your phone.

[-] solivine@lemmy.world 12 points 1 year ago

Well that's the future they want anyway - for you to own nothing and be happy

[-] reverie@lemmy.world 52 points 1 year ago

You wouldn’t download rear-heated seats.

[-] bobs_monkey@lemm.ee 9 points 1 year ago

Just the entire car

[-] whenigrowup356@lemmy.world 44 points 1 year ago

So they install heated seats and then make you pay to unlock them?

That seems... not cost-effective

[-] dojan@lemmy.world 29 points 1 year ago

You don’t think they gift you heated seats do you? You pay for it, that’s part of the purchase price. They even save money because they don’t have to stock or install different types of seats.

Then you pay for it, and if you want to use it, you’ll pay for it again.

Welcome to the future. You’ll own nothing and you’ll be happy.

[-] NightOwl@lemmy.one 12 points 1 year ago

Paying for something in this era means they are still the product. Sometimes even more so, since paid options require signing into make use of the product creating nice account based activity to track with personal info and payment details. Future is awesome.

[-] Yoruio@lemmy.ca 24 points 1 year ago

Actually, on that scale, it probably is more cost effective. They don't need separate factory lines, or to pump out cars with all sorts of different combinations of options. It takes better advantage of the economy of scale.

[-] Ilovethebomb@lemmy.world 6 points 1 year ago

Why not just have the seats as a base model feature?

I can understand having one wiring harnesses, and having two types of seats, but otherwise you'd need to charge twice the cost of the feature to break even.

[-] bobs_monkey@lemm.ee 6 points 1 year ago

Why not just have the seats as a base model feature?

Because then you can't charge something ridiculous for it

[-] fneu@discuss.tchncs.de 2 points 1 year ago

Because it’s still more expensive to install the heated seats for everyone then to not install them at all. And most people don’t need them. So if it was a base feature then the car would be more expensive for everyone.

So now they let the people that bought the upgrade pay for everyone’s heated seats - which is less expensive then it would be if heated seats were only installed in their cars.

I’m not saying that it’s the right thing to do, but it does make the car cheaper for everyone.

[-] dojan@lemmy.world 4 points 1 year ago

Yeah that’s not how it works for any manufacturer. They charge you for the heated seats whether you use them or not.

Do you seriously think that they just give away parts hoping that enough users need it to pay for it and cover the cost?

[-] shinjiikarus@mylem.eu 1 points 1 year ago

Twice of the much lower cost, due to economies of scale … which may/should still be significantly less than building two - and more, for more features - factory lines and risk not selling a car for a longer time, since it doesn’t have the right feature combination.

[-] Thorny_Thicket@sopuli.xyz 9 points 1 year ago

You'd be surprised. To make two different models, one without heated seats may very well cost more than just making one model with all the features built in. Now the cheaper version which normally wouldn't have these features at all actually does have them but they're disabled and that's why you paid less for it.

Tesla 85D and 100D both have the same battery pack too but on 85D it's digitally limited to smaller range and that's why it's cheaper.

[-] andrewrgross@slrpnk.net 14 points 1 year ago

I think that this kind of rentism has become dangerously pervasive, but I want to believe that more and more people are recognizing it as absurd. This kind of news does a lot to further this, imo.

[-] Guy_Fieris_Hair@lemmy.world 7 points 1 year ago* (last edited 1 year ago)

Cost of equipment wasted vs cost of setting the plant up to make multiple option packages. Also, if you force someone to make a decision when they initially buy the vehicle, then you permanently never get that upgrade on that vehicle. However, if someone can chose later that they want heated seats then they might make the sale when the owner is sitting in their car on a cold winter morning freezing their butt off. Or, if the second owner wants it. All I'm saying is the cost of providing different manufacturing options vs the possible profits of someone purchasing it later, it is probably more profitable for them to do what they are doing. Otherwise they wouldn't be doing it.

[-] Paradox@lemdro.id 3 points 1 year ago

Not just heated seats. Correct me if I'm wrong, but I believe Tesla only makes one of each model of car. So there's only one Model 3. Everything else that differentiates the trim levels is done entirely in software.

[-] wolfpack86@lemmy.world 2 points 1 year ago

Think there's at least two frames, single and then for dual motor.

load more comments (1 replies)
[-] mikeboltonshair@lemmy.world 3 points 1 year ago

This isn’t something new it’s been around in the auto industry for decades, way back in the day you would have to run the wiring if a customer purchased a towing package, they changed that over time by basically having the wire harnesses pre wired and instead you would just add a couple of plug and play components, the newest versions of this is software unlocks, they just got rid of the actual hardware stuff

load more comments (1 replies)
[-] FrostbyteIX@lemmy.world 23 points 1 year ago

How long till Ol Musky sues them for some stupid reason?

[-] Guy_Fieris_Hair@lemmy.world 16 points 1 year ago

TIL "Researchers" = Pirates. Sexy pirates.

[-] Grandwolf319@sh.itjust.works 15 points 1 year ago

As someone who owns one, this is excellent news!

I want to hack and jailbreak my car, and maybe put a better batter in a few years!

Companies of all kinds will always screw over the consumer.

[-] Dark_Blade@lemmy.world 4 points 1 year ago

Imagine being able to retrofit these with solid-state batteries when they’re a thing. These hackable 3s might someday go for a premium.

load more comments (2 replies)
[-] DoctorWhookah@lemmy.world 15 points 1 year ago

I love the idea of some shady-ass looking garage with Cletus the slack jawed yokel charging Tesla owners for a good ole hackin’

[-] CantSt0pPoppin@lemmy.world 9 points 1 year ago

You might be laughing at the fog, but you aren't far from the truth period take a moment to look into the John Deere hacker's period you have these rough black farmers learning how to hack their combined machines, so they can work on them without having to have proprietary software, it is quite interesting and amazing period

[-] Fbartels@discuss.tchncs.de 10 points 1 year ago
[-] Dark_Blade@lemmy.world 3 points 1 year ago

Probably yes period

[-] watson387@sopuli.xyz 4 points 1 year ago

Borderlands vibes lol

[-] 1984@lemmy.today 12 points 1 year ago* (last edited 1 year ago)

Heated car seats is extra on Teslas??

That has to be the funniest thing I've read this week. What else is extra?

It's only one of the most expensive cars that exists, so naturally, charge extra for heating... :)

[-] Chriskmee@lemm.ee 2 points 1 year ago* (last edited 1 year ago)

If I remember correctly, rear heated seats were only extra (and pre-installed just needing a software update to enable) once. There was a time when the cheapest model 3 was slightly too expensive for some rebates, so they sold a software locked version that was just barely was under the limit for the rebate. To reduce the initial price they software locked the rear heated seats, along with some battery capacity, and maybe one or two other things, all of which you could pay to unlock afterwards.

[-] belshamharoth@lemmy.world 1 points 1 year ago

Why didn't they simply make the car cheaper without software locking features?

Seems like a bit of a lousy move on the part of Tesla

load more comments (1 replies)
[-] autotldr@lemmings.world 10 points 1 year ago

This is the best summary I could come up with:


A group of researchers said they have found a way to hack the hardware underpinning Tesla’s infotainment system, allowing them to get what normally would be paid upgrades — such as heated rear seats — for free.

This may also give owners the ability to enable the self-driving and navigation system in regions where it’s normally not available, the researchers told TechCrunch, though they admitted that they haven’t tested these capabilities yet, as that would require more reverse engineering.

“We are not the evil outsider, but we’re actually the insider, we own the car,” Werling told TechCrunch in an interview ahead of the conference.

Werling explained that what they did was “fiddle around” with the supply voltage of the AMD processor that runs the infotainment system.

With the same technique, the researchers said they were also able to extract the encryption key used to authenticate the car to Tesla’s network.

In theory, this would open the door for a series of other attacks, but the researchers said they still have to explore the possibilities in this scenario.


I'm a bot and I'm open source!

[-] j4k3@lemmy.world 18 points 1 year ago

This bot needs a conditional check implemented to count the number of lines in the original post's comment, then only post if the length is shorter than some arbitrary value or percentage of its own results.

[-] RamSwamson 10 points 1 year ago

Now I want a nuisance bot. Maybe start things off like:

This is the longest summary I could come up with:

[-] eager_eagle@lemmy.world 2 points 1 year ago

or a shortest summarization bot that always copies the title

[-] RobotToaster@infosec.pub 2 points 1 year ago

A sesquipedalian loquaciousness bot

[-] cheese_greater@lemmy.world 1 points 1 year ago
[-] ArugulaZ@kbin.social 4 points 1 year ago

On-Disc DLC: The Next Generation!

[-] KTVX94@lemmy.myserv.one 2 points 1 year ago

This one's gonna be fun

load more comments
view more: next ›
this post was submitted on 04 Aug 2023
570 points (99.1% liked)

Technology

59710 readers
1860 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS