Photo: YouTube Screenshot/Ben Sullins
The biggest flaw about automobiles going electric is the risk of cyber attacks. Elon Musk has received numerous claims from hackers claiming to access Tesla. Well, new claims have surfaced, this time from a 19-year old security researcher in Germany. The teenager claims to have access to more than 25 Teslas in 13 different countries.
A 19-year old self-proclaimed IT specialist, David Colombo, claims to have found a security flaw in Tesla’s systems and remotely gained access.
According to the teenager’s tweet on Tuesday, the security flaw allows him to unlock windows and doors. The breach also lets him unlock the EVs without using a key and disable security systems in place.
Colombo also claims that he can see whoever enters the breached vehicles, turn on the stereo and the headlights.
The self-described information technology specialist was vague about the specifics of the EV pioneer’s systems but tweeted that it was within the automaker’s software and infrastructure. He added that only a small number of Tesla owners have the bug.
American-owned Tesla Motors has a vulnerability disclosure platform based on an online report. This space lets security researchers register their vehicles for testing, which the automaker can pre-approve. The EV pioneer can make payments up to $15,000 for a qualified vulnerability case.
Using his Twitter handle, Colombo updated that he got in touch with Tesla’s security team, investigating the issue, and promised to get back to him with any updates.
It’s not the first time someone has come out claiming to have spotted a vulnerability in Tesla’s systems. In 2021, a group of benevolent hackers, including Ralf-Philip Weinmann, demonstrated how they could crack open a Tesla’s door using a drone with a Wi-Fi dongle. According to the team, they received $31,500 from the Tesla bounty program for reporting the issue.
In 2017, Jason Hughes, a well-known member of the Tesla community, discovered a security breach on the automaker’s servers that gave him access to Supercharger data globally. Hughes received $5,000 from the EV’s bug reporting service.
According to the teenager’s tweet on Tuesday, the security flaw allows him to unlock windows and doors. The breach also lets him unlock the EVs without using a key and disable security systems in place.
Colombo also claims that he can see whoever enters the breached vehicles, turn on the stereo and the headlights.
The self-described information technology specialist was vague about the specifics of the EV pioneer’s systems but tweeted that it was within the automaker’s software and infrastructure. He added that only a small number of Tesla owners have the bug.
American-owned Tesla Motors has a vulnerability disclosure platform based on an online report. This space lets security researchers register their vehicles for testing, which the automaker can pre-approve. The EV pioneer can make payments up to $15,000 for a qualified vulnerability case.
Using his Twitter handle, Colombo updated that he got in touch with Tesla’s security team, investigating the issue, and promised to get back to him with any updates.
It’s not the first time someone has come out claiming to have spotted a vulnerability in Tesla’s systems. In 2021, a group of benevolent hackers, including Ralf-Philip Weinmann, demonstrated how they could crack open a Tesla’s door using a drone with a Wi-Fi dongle. According to the team, they received $31,500 from the Tesla bounty program for reporting the issue.
In 2017, Jason Hughes, a well-known member of the Tesla community, discovered a security breach on the automaker’s servers that gave him access to Supercharger data globally. Hughes received $5,000 from the EV’s bug reporting service.
So, I now have full remote control of over 20 Tesla’s in 10 countries and there seems to be no way to find the owners and report it to them…
— David Colombo (@david_colombo_) January 10, 2022
Google News