Hackers Are Stealing Cars by Injecting Code Into Headlight Wiring (thedrive.com)
Hackers Are Stealing Cars by Injecting Code Into Headlight Wiring
High-tech thieves are stealing cars using a device that injects CAN messages into a vehicle's headlight harness.
www.thedrive.com
https://kentindell.github.io/2023/04/03/can-injection/
CAN Injection: keyless car theft
This is a detective story about how a car was stolen - and how it uncovered an epidemic of high-tech car theft. It begins with a tweet. In April 2022, my friend Ian Tabor tweeted that vandals had been at his car, pulling apart the headlight and unplugging
kentindell.github.io
Once the device is on and plugged in, it wakes up the CAN network by sending a frame—similar to if you were to pull on a door handle, approach with a passive entry key, or hit a button on your fob. It then listens for a specific CAN message to begin its attack. The device then emulates a hardware error which tricks other ECUs on the CAN network to stop sending messages so that the attacking device has priority to send its spoofed messages to CAN devices.
The pause of valid messages is when the device is able to go into attack mode. It then sends the spoofed "valid key present" messages to the gateway which makes the car think that an actual valid key is being used to control the vehicle. Next, the attacker simply presses the speaker's "play" button, and the car's doors are unlocked.
Given that the manufacturer of these CAN injection devices claims that the devices are so effective against a myriad of makes and models, it would seem that this could be an industry-wide problem that may take some brainstorming to fix.
The good news is that this type of attack can be thwarted. While there are quick-and-dirty methods that could potentially be re-defeated in the long run, an automaker looking to prevent this type of attack by encrypting its CAN Bus network. According to Tindell, Canis is working on a similar project to retrofit U.S. military vehicles with a similar encryption scheme, similar to what he suggests as the fix for commercial vehicles experiencing this issue.
If thieves are already exploiting this in the wild (which they are), it means that it's already a problem. And if it continues to grow in popularity, perhaps it could lead to a repeat of what Hyundai and Kia are currently experiencing on a significantly more low-tech level.
'경로 및 정보' 카테고리의 다른 글
| Shell code Development pdf (0) | 2023.04.16 |
|---|---|
| Braktooth-IVI-Report/ (0) | 2023.04.14 |
| ASPICE 개요 (0) | 2023.04.03 |
| ISO 26262 ASIL D 와 IEC 61508 SIL 3 인증 획득한 RTOS (0) | 2023.04.03 |
| XSS 우회 패턴 등 (0) | 2023.03.20 |
wtdsoul