CaptUAL
Member
Really Bad neighborhood? Work in a Ghetto? Play in low life locations? Why the paranoia? Park in the garage and Forget about it.
-
Want to remove ads? Register an account and login to see fewer ads, and become a Supporting Member to remove almost all ads.
Time to disable bluetooth as a key?
- Thread starter Glamisduner
- Start date
rpiotro
Active Member
Pro tip. If the other guy is at fault don't even get your insurance involved. Make a claim with the other guys insurance. It's what I did.
Probably would take two people... one near you with a device and one near the car with a device and to open the door.
Pin to drive IS the fix for this. It takes two seconds, it's still far faster than even pressing a start/stop button or turning a key.
ucmndd
Well-Known Member
Blows my mind that CA’s property damage liability minimum is only $5k. Or anywhere for that matter. Even a parking lot love tap can be more than $5k these days.
Who would then open the door? A relay attack just makes the car think the driver is close by. It can't originate, for example, the "pop driver door" command.
It seems like this type of theft would require a person at the vehicle. Which means either two people, or the device near the owner is somehow following the owner automatically (e.g. planted in their pocket).
No, you need two devices to make the relay .. one that is left close to the car and the other close to the owners phone. Assuming the owner is close by you can get back to the car before ti relocks. Otherwise yes you need two people, one to get in the car and start it once the door unlocks.
Protecting against these devices is tricky since you need time of flight based on timestamps buried in the devices (encrypted) and/or exchange of GPS location data. You cannot use (e.g.) BTLE time of flight since the car measures this from the device to the car, and in this case its the relay device which IS close to the car.
A relay attack is probably not that difficult... a pair of flipper zeroes for $170 each is probably enough to carry this out. If someone is determined enough to do this, they'll probably just follow you for a bit and watch you type your PIN to drive as well (with, for example, binoculars). I'd say it takes two people to pull off... one at the car and the other close enough to the driver. Trying to plan the second device on the driver is how you get caught.
Pickpocketing someone's key is another option for people into stealing cars. So is the "Kia Challenge", which I believe is pretty easy to pull off and definitely less expensive than two flipper zeroes. Of course, neither of those methods gets you a Tesla.
I use PIN to drive, and I also lock my bike up. People with bolt cutters can still steal the bike, and two people with two flipper zeroes, a pair of binoculars, and a plan could steal the Model 3. Such is life.
RayK
Active Member
Video from a year and a half ago. I suspect that this guy opened up my wife's 2018 Ridgeline using a relay attack. He passed up my neighbor's Model Y (the headlight flash at the start of the clip). He did try my other neighbor's Pathfinder, directly across the street as he paused by the driver's door for a few seconds before walking to my house. At 32 seconds into the video, he's grabbing the Ridgeline driver's door with his left hand but waiting while doing something else in his right. A few seconds later the interior light goes on and then he opens the door. He was inside for several minutes (the video is two clips stitched together; watch the time in the upper right). We missed him by seconds as I have a driveway monitor that triggers an alarm when someone approaches the vehicles. I was in the bathroom at the time and I reviewed recordings before realizing what was happening otherwise I would have been out there sooner.
We are sure that my wife's truck was locked. We used to keep our keychains hanging up on a board near the front door. No more. Now they're inside faraday boxes. I have a non-passive fob that I take with me whenever I go out as it also has my house keys on the chain. I try to disable my phone's bluetooth each night but sometimes I forget. I guess that means I should enable PIN to drive to be safe(r).
ucmndd
Well-Known Member
People who know exactly what they’re looking for.
It’s easy enough to disable connectivity and keep the car from phoning home.
My daughter’s iPhone was stolen about a year ago. We did everything right - had Find My turned on, marked the device as stolen within 30 minutes of it being snatched - in theory making it a useless brick to a thief.
We were able to track its location for days - police didn’t care. Clearly weren’t going to go hunting it down. In less than a week it was in Vietnam, where it pinged its last ping shortly before I’m sure it was broken down into parts for resale.
Similar story for organized crime rings stealing cars.
ucmndd
Well-Known Member
Might be a shocker, but not everyone lives in a place with a garage to hold their cars.Really Bad neighborhood? Work in a Ghetto? Play in low life locations? Why the paranoia? Park in the garage and Forget about it.
Last edited by a moderator:
A stolen iPhone is a little bit different from a stolen car. Phone theft gangs wrap the phone in aluminum foil to create a makeshift faraday cage and prevent the phone from receiving signals. Where tesla puts the LTE antenna would be pretty difficult to wrap in foil.
ucmndd
Well-Known Member
No, in my experience they don’t even bother. That’s the point.
I seriouslt doubt it’s hard or time consuming to disconnect.
Similar threads
