100 million Volkswagens at risk with new wireless key hack

Researchers from the University of Birmingham and the German engineering firm Kasper & Oswald have found vulnerabilities, affecting the keyless entry systems of nearly 100 million cars.

The weakness can be used by thieves to wirelessly unlock cars, each at the press of a button. Cars from across the VW Group, sold for the past 20 years are vulnerable. Among them are also Skoda, Seat and Audi.

With a simple home-built $40 device, a hacker can "eavesdrop and record rolling codes, emulate a key, and perform reactive jamming. The problem stems from VW's reliance on a "few, cryptographic global master keys for the RKE systems in vehicles."

"With the knowledge of these keys, an adversary only has to eavesdrop a single signal from a target remote control. Afterwards, he can decrypt this signal, obtain the current UID and counter value, and create a clone of the original remote control to lock or unlock any door of the target vehicle an arbitrary number of times," the researchers say.

Read more -here-

• Microsoft starts testing ads in the Windows 11 Start menu
• Apple warns of iPhone 'mercenary spyware attack' across 92 countries
• Broadband 'nutrition labels' kick in, revealing hidden fees for ISPs
• TikTok is getting closer to launching an Instagram rival
• Spotify launches personalized AI playlists that you can build using prompts
• Disney Plus' password sharing crackdown begins soon