this post was submitted on 29 Jul 2023
13 points (93.3% liked)

Security

630 readers
3 users here now

A community for discussion about cybersecurity, hacking, cybersecurity news, exploits, bounties etc.

Rules :

  1. All instance-wide rules apply.
  2. Keep it totally legal.
  3. Remember the human, be civil.
  4. Be helpful, don't be rude.

Icon base by Delapouite under CC BY 3.0 with modifications to add a gradient

founded 1 year ago
MODERATORS
LinearArray
13
A surprisingly simple way to foil car thieves (news.umich.edu)
submitted 1 year ago by agilob to c/security
8 comments fedilink hide all child comments
top 8 comments
sorted by: hot top controversial new old
[–] malloc 4 points 1 year ago (1 children)

The best way to "foil car thieves" is to drive a junker vehicle. Nobody is going to waste their time and potential jail time stealing a car worth less than $1000 USD in parts, unless they really just want to fuck with you.

Also never drive a Hyundai. South Korean auto manufacturers are the absolute worst.

[–] Isoprenoid 4 points 1 year ago

There is no evidence suggesting older vehicles are less likely to be stolen.

Junker vehicles may be more likely to be stolen because they are easier to steal. This is usually because they have less and/ or poor security features. Older vehicles can be favoured targets because their parts are more valuable due to their scarcity because they are out of production.

https://rucore.libraries.rutgers.edu/rutgers-lib/36286/PDF/1/play/

[–] [email protected] 3 points 1 year ago (2 children)

This seems flawed. If the hacker knows that there is one of these devices, and they already have access to the driver's seat, they could pop the hood and recircuit the red wire.

A better idea is if your keyfob used a regenerating code. Current vehicles use the same code every time. And this device does as well.

When your car turns on, it would send a new code to your fob. If the fob returns that code the next time the car is started, it starts normally and a new code is generated. This code is also the one responsible for door locks, etc.

In order for a hacker to obtain the correct code, they have to be near the car when the car is started, then have to go with the car to its destination. Each time the car is started, the password changes.

If a fob gets out of sync, the fob and car can be reset at a dealership.

[–] Pyro 2 points 1 year ago (1 children)

I think with a regenerating code, there needs to be an easier way to deal with the fob getting out of sync. It would be pretty annoying to miss the fob hit and then have your vehicle become unusable.

[–] corristo 2 points 1 year ago

The way @Oka described it the fob would only change the code if the car sends a new code. So if you're out of range the fob would send the same code again on the next press.

However, if the dealership can reset the fob and car then in due time so will any criminal, either by acquiring the necessary hard- and software from a dealership going out of business or someone reverse-engineering it.

[–] ccunix 1 points 1 year ago

How do you deal with 2 key fobs?

[–] jadero 2 points 1 year ago

Almost like port knocking.

[–] hairyballs 2 points 1 year ago

I have a much better plan: I live in a country where cars ain't stolen