Security News > 2020 > November > Tesla Model X key fobs could be hacked to steal cars, fix released
Researchers at the University of Leuven in Belgium found vulnerabilities in the keyless entry system of the Tesla Model X that would have allowed attackers to steal the $100,000 car within just a few minutes.
The security bugs allowed taking full control of the key fob and of the car by remotely updating the Tesla Model X's BLE chip with specially crafted firmware.
How to take control of a Tesla Model X. To successfully exploit the flaws, attackers would need to get close to the targeted car, use a modified Electronic Control Unit to wake up the key fob, deliver the firmware update to gain full control, and unlock the car.
"The newly paired key fob allows us to then start the car and drive off. By exploiting these two weaknesses in the Tesla Model X keyless entry system we are thus able to steal the car in a few minutes."
The University of Leuven researchers also provide a demonstration video showing the entire process and the tools they needed to take full control of the Tesla Model X. The company's Tesla Model 3 car Chromium-based infotainment system was hacked during last year's Pwn2Own competition by Fluoroacetate's Amat Cama and Richard Zhu.