Teslas Hackers Have Found Another Unauthorized Access Vulnerability(jalopnik.com)
jalopnik.com
Teslas Hackers Have Found Another Unauthorized Access Vulnerability
https://jalopnik.com/teslas-hackers-have-found-another-unauthorized-access-v-1849535920
2 comments
FWIW, the paper at https://act-on.ioactive.com/acton/attachment/34793/f-6460b49... says:
> Tesla claims that this security issue is mitigated with the “PIN to Drive” feature, which would still allow attackers to open and access the car, but would not allow them to drive it. However, this feature is optional, and Tesla owners who are not aware of these issues may not be using it.
It also suggests that (at least some of) the possible mitigations may require hardware changes, which couldn't be done OTA.
> Tesla claims that this security issue is mitigated with the “PIN to Drive” feature, which would still allow attackers to open and access the car, but would not allow them to drive it. However, this feature is optional, and Tesla owners who are not aware of these issues may not be using it.
It also suggests that (at least some of) the possible mitigations may require hardware changes, which couldn't be done OTA.
This I think is another good advantage for the cars to do OTA updates as you can get security fixes fast.