Gone in 20 Minutes: using laptops to steal cars

Caporegime
Joined
11 Mar 2005
Posts
32,215
Location
Leafy Cheshire
leftlanenews said:
High-tech thieves are becoming increasingly savvy when it comes to stealing automobiles equipped with keyless entry and ignition systems. While many computer-based security systems on automobiles require some type of key — mechanical or otherwise — to start the engine, so-called ‘keyless’ setups require only the presence of a key fob to start the engine

The expert gang suspected of stealing two of David Beckham’s BMW X5 SUVs in the last six months did so by using software programs on a laptop to wirelessly break into the car’s computer, open the doors, and start the engine.

“It’s difficult to steal cars with complex security, but not impossible. There are weaknesses in any system,” Tim Hart of the Auto Locksmith Association told the U.K.’s Auto Express magazine. “At key steps the car’s software can halt progress for up to 20 minutes as part of its in-built protection,” said Hart.

Because the decryption process can take a while — up to 20 minutes, according to Hart — the thieves usually wait to find the car in a secluded area where it will be left for a long period. That is believed to be what happened to Mr. Beckham — the crooks followed him to the mall where he was to have lunch, and went to work on his X5 after it was parked.

While automakers and locksmiths are supposed to be the only groups that know where and how security information is stored in a car, the information eventually falls into the wrong hands.

According to the Prague Post leaving such information on a laptop is what got Radko Souček caught for stealing several cars. “You could delete all the data from your laptop, but that’s not good for you because the more data you have, the bigger your possibilities,” he says. He says any car that relies on software to provide security can be circumvented by other software. “Every car has its weak spot,” he says. Souček faces up to 12 years in prison.

The Leftlane Perspective: Many modern cars now rely on software entirely for security. Gone are the days where microchips supplemented mechanical locks as an additional security measure. In the case of true ‘keyless’ systems, software is the only thing between a thief and your car. As computers become more powerful, will stealing cars become even easier? Never mind future cars with better security — what about today’s cars a few years down the road? With cars as inexpensive as the Toyota Camry offering entirely keyless systems, these concerns a relevant to all consumers.

Interesting read, when this tech becomes mainstream all of the latest cars could be in for a hard time (security wise).
 
All over hyped, Determined thievs will always be able to break ANY security device/system. However it takes the chavs and less skilled thieves out the equation.
 
That's a very interesting read.

Quite scary just what technology these theives have developed. Just shows that nothing is safe.
 
No system is foolproof. At the end of the day, if they want your car badly enough they'll show up with a low loader and pick the thing up off the ground.
 
Lopéz said:
The only way a laptop is going to be used to help steal my car is by lobbing it through the window :p


Or most peoples car. This story seems way to far fetched for my liking. For one thing they would have to have broken into the car so that they could access the cars internal systems if they wanted to get the code for the cars alarm system. If they were hoping to hit the remotes code using a transmitter of some description then they only have about 15 billion to go through. As well as that the cars alarm system and immobiliser use 2 different codes so that would double the amount of work they would have to do.
 
Gav said:
To gain access to the cars systems you have to connect to it via the diagnostics plug and thats not wireless.

You could use brute force over RF which is what is used to unlock the car (and act as the key on more expensive cars).

20 mins to steal a car is a long time! It shows how the technology has evolved in a good way. With a car from the 60's you could probably steal it in a matter of seconds.
 
Aerial loop around the steering column which reads the transponder key signal, remote key press to open all doors, with time you can hack either using a laptop without connecting it to the car.

No doubt the top end x5 has keyless entry and start button without having to use a key.
 
The cars system has a rolling code which changes everytime the remote is pressed. It needs to see 3 codes in sequence to disarm and unlock. These codes are random and there are supposed to be around 15 billion to choose from. It would take a good bit more than 20 min to work that out.

The immobiliser also has a changing code system which makes it one of the most advanced immobiliser systems available. Again it needs to see 2 codes before it will disarm. If the car is bombarded with codes then the system shuts down.
 
Gav said:
The cars system has a rolling code which changes everytime the remote is pressed. It needs to see 3 codes in sequence to disarm and unlock. These codes are random and there are supposed to be around 15 billion to choose from. It would take a good bit more than 20 min to work that out.

The immobiliser also has a changing code system which makes it one of the most advanced immobiliser systems available. Again it needs to see 2 codes before it will disarm. If the car is bombarded with codes then the system shuts down.

First of all, yes you might have 15 billion combinations but you might not have to process 15 billion or hit the system with that many, your assuming he has to go through all the codes and will only firgure it out on the last one.

Yes the codes are in a rolling sequance all you need to do is scan when the key is pressed and that will set you off with a good sequence to start with.

It can quite clearly be done, this aint the first time i've heard about this.
 
Back
Top Bottom