Few details on a wireless hack that can unlock most VAG vehicles
08-10-2016, 08:24 PM
#1
AudiWorld Member
Thread Starter
Join Date: Sep 2015
Location: Portland, OR
Posts: 159
Likes: 0
Received 0 Likes
on
0 Posts
Few details on a wireless hack that can unlock most VAG vehicles
I just read this article that talks about some researchers addressing various wireless hacks that can unlock current VAG products. https://www.wired.com/2016/08/oh-goo...n-volkswagens/
08-11-2016, 06:54 AM
#3
AudiWorld Senior Member
At least our new MQB A3 is not affected.
Keyless systems of older VW Group cars can be hacked: researchers | Reuters
Keyless systems of older VW Group cars can be hacked: researchers | Reuters
08-11-2016, 01:06 PM
#5
this article mentions VW and all sub firms including audi
Thieves can wirelessly unlock up to 100 million Volkswagens, each at the press of a button ? The Register
The eggheads, led by University of Birmingham computer scientist Flavio Garcia alongside colleagues from German engineering firm Kasper & Oswald, have managed to clone a VW Group remote control key fob after eavesdropping on the gizmos' radio transmissions.
The hack can be used by thieves to wirelessly unlock as many as 100 million VW cars, each at the press of a button. Almost every vehicle the Volkswagen group has sold for the past 20 years – including cars badged under the Audi and Skoda brands – are potentially vulnerable, say the researchers. The problem stems from VW’s reliance on a “few, global master keys.”
Thieves can wirelessly unlock up to 100 million Volkswagens, each at the press of a button ? The Register
The eggheads, led by University of Birmingham computer scientist Flavio Garcia alongside colleagues from German engineering firm Kasper & Oswald, have managed to clone a VW Group remote control key fob after eavesdropping on the gizmos' radio transmissions.
The hack can be used by thieves to wirelessly unlock as many as 100 million VW cars, each at the press of a button. Almost every vehicle the Volkswagen group has sold for the past 20 years – including cars badged under the Audi and Skoda brands – are potentially vulnerable, say the researchers. The problem stems from VW’s reliance on a “few, global master keys.”
08-11-2016, 07:19 PM
#6
AudiWorld Super User
this article mentions VW and all sub firms including audi
Thieves can wirelessly unlock up to 100 million Volkswagens, each at the press of a button ? The Register
The eggheads, led by University of Birmingham computer scientist Flavio Garcia alongside colleagues from German engineering firm Kasper & Oswald, have managed to clone a VW Group remote control key fob after eavesdropping on the gizmos' radio transmissions.
The hack can be used by thieves to wirelessly unlock as many as 100 million VW cars, each at the press of a button. Almost every vehicle the Volkswagen group has sold for the past 20 years – including cars badged under the Audi and Skoda brands – are potentially vulnerable, say the researchers. The problem stems from VW’s reliance on a “few, global master keys.”
Thieves can wirelessly unlock up to 100 million Volkswagens, each at the press of a button ? The Register
The eggheads, led by University of Birmingham computer scientist Flavio Garcia alongside colleagues from German engineering firm Kasper & Oswald, have managed to clone a VW Group remote control key fob after eavesdropping on the gizmos' radio transmissions.
The hack can be used by thieves to wirelessly unlock as many as 100 million VW cars, each at the press of a button. Almost every vehicle the Volkswagen group has sold for the past 20 years – including cars badged under the Audi and Skoda brands – are potentially vulnerable, say the researchers. The problem stems from VW’s reliance on a “few, global master keys.”
Audi: A1, Q3, R8, S3, TT, various other types of
Audi cars (e.g. remote control part number 4D0 837
231)
Leaves out a lot of models like the A4/5/6/7/8 and Q5/7 with years greater than 2006.
08-12-2016, 04:45 AM
#7
AudiWorld Super User
Nothing really new there. There are older threads here in this forum discussing the problem, and Marc Tobias has several YouTube clips posted, also showing how simple it is to access the cars. Not just VW.
The fact that dealers and AoA alike all claim to know nothing and that there is no problem, while TV networks and newspapers have remarked on it for several years and there are rational explanations of how it is actually done being posted on the web is more disturbing.
If someone tells me that I am buying a car with a security system, but they have reason to know it really is a system that cannot be secured or locked...is that a fraud? Similar to dieselgate?
The fact that dealers and AoA alike all claim to know nothing and that there is no problem, while TV networks and newspapers have remarked on it for several years and there are rational explanations of how it is actually done being posted on the web is more disturbing.
If someone tells me that I am buying a car with a security system, but they have reason to know it really is a system that cannot be secured or locked...is that a fraud? Similar to dieselgate?
Trending Topics
08-12-2016, 01:31 PM
#8
AudiWorld Member
Do the Audi keys get a new security code everytime you start them?
I don't know if this was just marketing BS or not but when I owned my Saab they claimed that the keys had a chip in them that when you started your car it would create a link or new security code for the immobilizer.
Is this a real thing and if so do Audi's have the capability? If they did in theory if you got my code when I unlocked the car if I started it the hacked key wouldn't work right?
I don't know if this was just marketing BS or not but when I owned my Saab they claimed that the keys had a chip in them that when you started your car it would create a link or new security code for the immobilizer.
Is this a real thing and if so do Audi's have the capability? If they did in theory if you got my code when I unlocked the car if I started it the hacked key wouldn't work right?
08-13-2016, 08:48 AM
#9
AudiWorld Super User
NoVa you may be confusing some things. Most if not all car keys have had chips in them for 30? years now. The idea is, there may be 36 different chips out there, so if someone tries to copy your key, they have to copy 36 times in order to match the chip, or the ECU won't allow a start. That's the most basic (obsolete) level.
Audi claims their chip is more complicated. Apparently some can store data from the ECU, which insurers in the EU have been reading to verify the date of last start (among other things) in order to confirm "my car was stolen a week ago" claims.
Audi claimed that in order to make a duplicate key, the dealer had to connect your car to a supersecret computer in Germany and generate the new key program code directly from that. Well...
Doesn't really matter. See the marc Tobias videos online.
Rolling codes (the ones that change every time) are 1990's technology also. Apparently these "monkey in the middle" attacks work even despite them. Maybe not repeatedly, but they only have to work once in order to let the car be stolen.
Audi claims their chip is more complicated. Apparently some can store data from the ECU, which insurers in the EU have been reading to verify the date of last start (among other things) in order to confirm "my car was stolen a week ago" claims.
Audi claimed that in order to make a duplicate key, the dealer had to connect your car to a supersecret computer in Germany and generate the new key program code directly from that. Well...
Doesn't really matter. See the marc Tobias videos online.
Rolling codes (the ones that change every time) are 1990's technology also. Apparently these "monkey in the middle" attacks work even despite them. Maybe not repeatedly, but they only have to work once in order to let the car be stolen.
08-13-2016, 09:09 AM
#10
AudiWorld Super User
NoVa you may be confusing some things. Most if not all car keys have had chips in them for 30? years now. The idea is, there may be 36 different chips out there, so if someone tries to copy your key, they have to copy 36 times in order to match the chip, or the ECU won't allow a start. That's the most basic (obsolete) level.
Audi claims their chip is more complicated. Apparently some can store data from the ECU, which insurers in the EU have been reading to verify the date of last start (among other things) in order to confirm "my car was stolen a week ago" claims.
Audi claimed that in order to make a duplicate key, the dealer had to connect your car to a supersecret computer in Germany and generate the new key program code directly from that. Well...
Doesn't really matter. See the marc Tobias videos online.
Rolling codes (the ones that change every time) are 1990's technology also. Apparently these "monkey in the middle" attacks work even despite them. Maybe not repeatedly, but they only have to work once in order to let the car be stolen.
Audi claims their chip is more complicated. Apparently some can store data from the ECU, which insurers in the EU have been reading to verify the date of last start (among other things) in order to confirm "my car was stolen a week ago" claims.
Audi claimed that in order to make a duplicate key, the dealer had to connect your car to a supersecret computer in Germany and generate the new key program code directly from that. Well...
Doesn't really matter. See the marc Tobias videos online.
Rolling codes (the ones that change every time) are 1990's technology also. Apparently these "monkey in the middle" attacks work even despite them. Maybe not repeatedly, but they only have to work once in order to let the car be stolen.
In the posts on this this forum a few months ago vehicles with the "Advance Key" option are easily unlocked with a black box that randomly generates the codes in a few seconds to unlock the vehicle. Thus the bad guys don't need to stake out a target car and wait to gather data as the owner uses the FOB multiple times.