Cars Being Stolen With Keyless Entry
If car owners throw their keys on the table or near their doors, they may not realize that they are allowing thieves to steal their signal. This relay attack is just one of the latest techniques criminals are using to steal brand new keyless vehicles.
All keyless ignition vehicles emit a low power radio signal to find a matching fob. If the signal is recorded and recreated, it could be used to unlock the car and start it up.
Relay Attack
Imagine your car safely parked in the driveway, with the key fob sitting safely inside your home. You're confident that your vehicle is safe, but unnoticed by you, sophisticated thieves are plotting a heist. Instead of breaking windows or jimmying locks, these thieves are using technology to gain access to cars through digital cracks in their armor. This method of stealing cars that have keyless access is called relay theft.
Keyless entry cars are designed to function using an electronic signal that is sent from the car's remote control (RF) transmitter to the owner's key fob. To stop unauthorized keyless entry the RF transmitters inside the key fob and in the car are programmed to only activate when they're within a specific distance of each other. A thief, however, is able to circumvent this restriction employing a method known as the'relay-attack'.
Two individuals are required to perform this: one person stands close to the car and utilizes a device to capture digitally the signal coming from the key fob. The other, who is at the house of the owner and using a second device to transmit the key fob's signal to the car. This trick tricks the car into thinking the key fob is near enough to allow it to unlock and start it up.
In the past, this type of heist required expensive equipment to perform. However, now you can purchase relay transmitters on the cheap online and execute an heist in a matter of minutes. This is why it's well-liked by car thieves.
All modern cars with keyless access are vulnerable. Certain cars are more susceptible to this type of attack than others. In fact, researchers have tested 237 popular vehicles and found that they can be targeted by this method.
Tesla vehicles are believed to be less prone to this kind of theft. However Tesla hasn't implemented UWB technologies that would allow it to conduct distance checks and prevent attacks via relay. The company has stated that they'll implement this in the near future, however until then, they are vulnerable. That is why it's important to be proactive about your vehicle security and install an anti-theft kit that protects your keys and car from these types of attacks.
CAN Injection Attack
Modern vehicles can defend themselves against thieves by transferring encrypted messages using the key to prove its authenticity. This system is generally reckoned to be secure, however criminals have found a way around it. They impersonate the smart key, then send messages to the vehicle and then drive away. To do that they gain access to the smart key's internal communication network.
Today, most automobiles are equipped with between 20 and 200 electronic control units (or ECUs) that control various aspects of the car's operation. They communicate with one another using an electronic network referred to as CAN bus. To reduce power consumption the ECUs go into a low-power sleep mode that's activated when they receive a 'wake up' frame. These frames are usually sent via the door or smart key receiver ECU. However they aren't always authenticated or encrypted so they can be intercepted by criminals with a cheap and simple device.
To do this, they look for a spot that allows them to connect directly to the CAN bus wires. They're usually hidden in the headlights or in front of the vehicle, and are accessible by pulling the bumper and cutting holes in the headlamp assembly to expose the wires. The thieves employ a device known as an CAN injection attack. It is used to send fake messages which fool the safety systems of the car to unlock and disable the engine immobilizer.
The devices are available on the Dark Web and work with the majority of major car manufacturers, including BMW and Cadillac, Chrysler, Fiat and Ford, Honda, Hyundai and Jeep, Lexus and Nissan, Renault and Toyota, Volkswagen and Maserati. Researchers who have discovered the CAN Injection attack recommend that all car makers address this car key stolen what do i do in their existing models. However, these thieves will continue to take whatever they can. The best we can do is make an effort to prevent this from happening by putting in mechanical security measures such as Discloks on all of cars, and making sure that they are always placed in areas that are well-lit and are clearly visible to people passing by.
Blocking the Signal
In a different variation of the relay attack, thieves could make use of a device to block the signal sent from the key fob when the vehicle is locked. The device could be found inside the pocket of a burglar in a parking lot or in a hidden spot near the driveway that is being targeted. Once the owners hit the lock button on their fobs, and then walk away and leave, they don't have to think about whether or not their car is actually locks. Instead, thieves are able to take off with the car since the signal that normally locks the car is blocked by the device of the criminal.
They also make use of devices that amplify signals from the key fob to unlock vehicles. The crooks are able to do this even if the key is inside a pocket of a driver, or hanging from an outside hook in the home. After the car is locked, hackers can use a standard diagnosis port to program the fob with a blank.
Automobile manufacturers have developed various anti-theft devices to protect against these types of attacks. But thieves always come up with ways to thwart these measures.
They've started using devices that transmit at the same frequency as remote keyfobs in order to intercept signals. The crooks can then copy the key fob's unlock code and then start the car with this fake signal.
This method is particularly popular in the US in which many vehicles have wireless technology. Owners can start and unlock their car using a mobile application on their phone. This technology will likely become more popular as more car manufacturers attempt to link their cars with their owners phones.
It is crucial that drivers follow the right procedures to park their cars. It is not a good idea to leave key fobs in the ignition, should always ensure that the car is fully locked when they're not using it and should make use of the steering wheel or a gearstick lock, if it is possible. They should also consider having a tracking device fitted to their car in case it's stolen.
Flat Battery
This kind of attack is more prevalent than most people realize. Thieves employ cheap devices to extend the signal from your key fob to open and start the car, even if it's shut off. Then they drive the car to an unmarked trailer or around a corner to take it away. It would be possible to shield your vehicle from this by installing an interrupter switch for the starter circuit. Simpler versions include an ON/OFF button that interrupts the circuit. It's about $15 and is simple to put in yourself.
Car thieves are constantly seeking new ways to steal vehicles. The police as well as car manufacturers and insurance companies are constantly trying to keep up with their strategies and develop better anti-theft systems for the latest cars. But this isn't stopping thieves who easily adapt and find ways to circumvent the latest anti theft measures.
For instance, a lot of thieves use devices that operate on the same radio frequency as the fob to block the signal. The device is placed in the pocket or close to the vehicle and prevents the fob from sending the lock command to the vehicle. This can be accomplished in a matter of seconds. The device is cheap and can be purchased online.
Hacking the computer system of the car is another option. This is more difficult, but feasible. Every car has a diagnostic port, and hackers have designed devices that connect to them and let them access the software of the car. They can then program the fob with blank code to work. This is also possible on older vehicles, but it is more difficult to do without taking off the ignition lock.
As more vehicles are connected to smartphones of drivers and this method could be more popular. Once a burglar has access to the username and password to a vehicle app, they can unlock or start the vehicle by using the app. You can guard yourself by not leaving valuables inside your car, and also by parking in a garage.