Teenager says he remotely hacked into more than 25 Teslas | Automotive Industry News

The 19-year old protection researcher mentioned the program flaw he exploited was not in Tesla’s software or infrastructure.

By Bloomberg

A 19-yr-aged security researcher statements to have hacked remotely into extra than 25 Tesla Inc. automobiles in 13 international locations, stating in a sequence of tweets that a software program flaw permitted him to accessibility the EV pioneer’s methods.

David Colombo, a self-described facts technologies professional, tweeted Tuesday that the computer software flaw lets him to unlock doors and home windows, start the cars without the need of keys and disable their safety methods.

Colombo also claimed he can see if a driver is present in the car, flip on the vehicles’ stereo seem techniques and flash their headlights.

The teen did not reveal the specific facts of the software package vulnerability, but claimed it wasn’t in just Tesla’s application or infrastructure, and included that only a small quantity of Tesla owners globally ended up affected. His Twitter thread elicited a strong reaction, with additional than 800 retweets and over 6,000 likes.

“It’s largely the proprietors (& a 3rd party) fault,” Colombo said in a reaction to queries from Bloomberg Information. “This will be described additional in element in my writeup. But happy to see Tesla getting action now.”

A agent for Tesla in China declined to comment, whilst the carmaker’s world wide press group did not reply to an e-mail looking for remark outside of West Coast enterprise hours.

In accordance to one online report, U.S.-based mostly Tesla has a vulnerability disclosure platform the place stability scientists can sign-up their own automobiles for testing, which Tesla can pre-approve. The corporation pays up to $15,000 for a qualifying vulnerability.

Colombo later tweeted he has been in touch with Tesla’s security group, and mentioned they were investigating the difficulty. The team stated they will appear back again to him with any updates, he stated.

(Updates with Colombo response in fifth paragraph.)