Security News > 2024 > January > Tesla hacked again, 24 more zero-days exploited at Pwn2Own Tokyo
Security researchers hacked the Tesla infotainment system and demoed 24 more zero-days on the second day of the Pwn2Own Automotive 2024 hacking competition.
On the first day of Pwn2Own Automotive 2024, Synacktiv also collected another $295,000 after getting root on a Tesla Modem and hacking Ubiquiti Connect EV and JuiceBox 40 Smart EV Charging Stations using three chains, exploiting a total of seven zero-days.
After the Pwn2Own competition ends, vendors have 90 days to release security fixes before TrendMicro's Zero Day Initiative publicly discloses the zero-days.
The Pwn2Own Automotive 2024 hacking contest takes place in Tokyo, Japan, during the Automotive World auto conference from January 24 to January 26, focusing on automotive technologies.
During the contest, the hackers target electric vehicle chargers, infotainment systems, and car operating systems, including Automotive Grade Linux, Android Automotive OS, and BlackBerry QNX. They'll also attack Tesla Model 3/Y and Tesla Model S/X units, including the in-vehicle infotainment and modem systems, both already hacked during the first two days of the tournament.
Tesla hacked, 24 zero-days demoed at Pwn2Own Automotive 2024.
News URL
Related news
- Hackers exploit 52 zero-days on the first day of Pwn2Own Ireland (source)
- Samsung Galaxy S24 and Sonos Era hacked on Pwn2Own Ireland Day 2 (source)
- QNAP, Synology, Lexmark devices hacked on Pwn2Own Day 3 (source)
- Over 70 zero-day flaws get hackers $1 million at Pwn2Own Ireland (source)
- QNAP fixes NAS backup software zero-day exploited at Pwn2Own (source)
- QNAP patches second zero-day exploited at Pwn2Own to get root (source)
- Synology hurries out patches for zero-days exploited at Pwn2Own (source)