TMC is an independent, primarily volunteer organization that relies on ad revenue to cover its operating costs. Please consider whitelisting TMC on your ad blocker or making a Paypal contribution here: paypal.me/SupportTMC

Hacking v7

Discussion in 'Belgium and the Netherlands' started by disharmony, Oct 15, 2015.

  1. disharmony

    disharmony Member

    Joined:
    Sep 3, 2013
    Messages:
    34
    Location:
    Netherlands
    Hi,

    I am still on the old software version (swver 2.5.36), but I would like to test and see if version 7 is still vulnerable.

    Who in the Netherlands with version 7 is willing to let me check v7 for vulnerability issues?

    cid.png
    tslafeat.jpg
     
  2. apacheguy

    apacheguy Sig 255, VIN 320

    Joined:
    Oct 21, 2012
    Messages:
    3,702
    Location:
    So Cal
    Wait, what? Details please.
     
  3. MITE46

    MITE46 Member

    Joined:
    Aug 26, 2014
    Messages:
    106
    Location:
    Los Altos / San Marino
    +1.... . . .
     
  4. dicktump

    dicktump Member

    Joined:
    Jun 6, 2014
    Messages:
    552
    Location:
    Enschede, NL
    Is this an in car exploitable vulnerability, or remote (for example from the WiFi network or internet)?
     
  5. Johan

    Johan Took a TSLA bear test. Came back negative.

    Joined:
    Feb 9, 2012
    Messages:
    6,890
    Location:
    Drammen, Norway
    Dude, do the right thing and contact Tesla so they can patch it up. Now with Autopilot going full public roll out it's not just fun and games any more hacking the firmware.
     
  6. apacheguy

    apacheguy Sig 255, VIN 320

    Joined:
    Oct 21, 2012
    Messages:
    3,702
    Location:
    So Cal
    Keep in mind this could require full physical access to exploit in which case I don't consider it a vulnerability that threatens safety.
     
  7. disharmony

    disharmony Member

    Joined:
    Sep 3, 2013
    Messages:
    34
    Location:
    Netherlands
    Tell that to Tesla. I did report every vuln I found between march 2014 and august 2015 to Tesla.
     
  8. Johan

    Johan Took a TSLA bear test. Came back negative.

    Joined:
    Feb 9, 2012
    Messages:
    6,890
    Location:
    Drammen, Norway
    Well done. That's all you can do, really.

    I'm assuming this hack requires plugging in physically?
     
  9. redevries

    redevries René de Vries

    Joined:
    May 22, 2013
    Messages:
    2,274
    Location:
    Oosterhout, Netherlands
    Did you get any credit for it? They should reward you for doing the right thing.

    I read elsewhere that people were contacted to stop messing with network connectors, can-busses, etc.. So, they are paying attention to suspicious activities in the car.

    Also, what is that app on the screen. Is that a special mode you found?
     
  10. apacheguy

    apacheguy Sig 255, VIN 320

    Joined:
    Oct 21, 2012
    Messages:
    3,702
    Location:
    So Cal
    That "special app" is the result of diagnostic access normally only accessible by SvC
     
  11. justroll

    justroll Member

    Joined:
    Feb 12, 2015
    Messages:
    269
    Location:
    Maaseik, Belgium
    BlackHat Europe is happening at Amsterdam RAI from 10 - 13 november ; i'm sure they will reserve a spot for some tesla vulnerabilities :p
     
  12. apacheguy

    apacheguy Sig 255, VIN 320

    Joined:
    Oct 21, 2012
    Messages:
    3,702
    Location:
    So Cal
    @OP - Can you please share info on this vulnerability or when it will be revealed?
     
  13. disharmony

    disharmony Member

    Joined:
    Sep 3, 2013
    Messages:
    34
    Location:
    Netherlands
  14. apacheguy

    apacheguy Sig 255, VIN 320

    Joined:
    Oct 21, 2012
    Messages:
    3,702
    Location:
    So Cal
    Sorry to hear about Tesla's lackluster response. Do you have an ETA on release of these vulnerabilities?
     
  15. justroll

    justroll Member

    Joined:
    Feb 12, 2015
    Messages:
    269
    Location:
    Maaseik, Belgium
  16. wk057

    wk057 Senior Tinkerer

    Joined:
    Feb 23, 2014
    Messages:
    4,712
    Location:
    Hickory, NC, USA
    Definitely interested in what you've come up with. Others, myself included, have been tinkering with similar things for a while now. Might be fun to share notes. Shoot me an email if you're interested. My nick at skie.net.
     
  17. AmpedRealtor

    AmpedRealtor Active Member

    Joined:
    Jun 30, 2013
    Messages:
    4,686
    Location:
    Buckeye, AZ
    Would love access to the service diagnostic screens to check on my battery CAC and other statuses.
     
  18. Sogorman

    Sogorman Member

    Joined:
    Nov 8, 2014
    Messages:
    205
    Location:
    Phoenix, AZ
    @disharmony were you fortunate enough to get V7 pushed to your vehicle?
     
  19. apacheguy

    apacheguy Sig 255, VIN 320

    Joined:
    Oct 21, 2012
    Messages:
    3,702
    Location:
    So Cal
    OP has gone silent...
     
  20. mmh

    mmh Member

    Joined:
    May 11, 2014
    Messages:
    122
    Location:
    SLC
    I think it's safe to assume that Tesla's assassins got to him.
     

Share This Page