100 million Volkswagens at risk with new wireless key hack2016-08-12 03:21 by Daniela
Tags: Wireless, security
Researchers from the University of Birmingham and the German engineering firm Kasper & Oswald have found vulnerabilities, affecting the keyless entry systems of nearly 100 million cars.
The weakness can be used by thieves to wirelessly unlock cars, each at the press of a button. Cars from across the VW Group, sold for the past 20 years are vulnerable. Among them are also Skoda, Seat and Audi.
With a simple home-built $40 device, a hacker can "eavesdrop and record rolling codes, emulate a key, and perform reactive jamming. The problem stems from VW's reliance on a "few, cryptographic global master keys for the RKE systems in vehicles."
"With the knowledge of these keys, an adversary only has to eavesdrop a single signal from a target remote control. Afterwards, he can decrypt this signal, obtain the current UID and counter value, and create a clone of the original remote control to lock or unlock any door of the target vehicle an arbitrary number of times," the researchers say.
Read more -here-