Connect with us

News

Details Behind the Tesla Model S Hack

Two researchers broke into the software of a Tesla recently. But there is good news behind the Tesla Model S hack. A fix was sent to all cars within days.

Published

on

Tesla Model S hack

Tesla Model S infotainment system also serves as the command center to the vehicle.

Last week, Marc Rogers, of content delivery network CloudFlare, and Lookout Mobile Security co-founder Kevin Mahaffey completed a digital break-in of a Tesla. But here’s the good news behind the Tesla Model S hack. Tesla quickly released an over-the-air firmware update, to every Model S ever manufactured, that would resolve the security holes uncovered by Rogers and Mahaffey.

The Tesla Hack

Rogers and Mahaffey had to dismantle the dashboard to gain access to an ethernet port. From there, they were able to connect directly to the CAN bus, the controller area network across which car data is sent and received.

After that, they chained together four separate vulnerabilities, first to gain access to the infotainment systems and then the touchscreen used to control vehicle functions. That let them make the speedometer disappear, alter the suspension, unlock the doors and the trunk, and make the windows go up and down. They were also able to shut down the car’s electric motor below 5 mph.

Above that speed, the dashboard screens would go blank but the car would shift into neutral, giving the driver time to find a safe place to bring the car to a stop. “Ironically, that means it’s the only car that can protect itself against a successful cyber attack,” Rogers noted.

Tesla’s Response

“Tesla has taken a number of different measures to address the effects of all six vulnerabilities reported by Lookout. And, we continue to develop further ways to harden our systems, informed by ongoing discussions with the security research community, as well as our own internal analysis. The update has been made available to all Model S customers through an OTA update. We will deploy this update to all vehicles by Thursday,” a spokesperson said in a statement e-mailed to Forbes.

Other auto manufacturers are following in Tesla’s footsteps by making internet updates available for their upcoming line of vehicles, but are starting years behind Tesla.

Advertisement

Rogers and Mahaffey say they also found two potential browser vulnerabilities that they exposed but did not exploit. Those flaws, resident in the WebKit browser engine, could possibly have enabled remote attacks, but Tesla’s new firmware update has resolved those issues as well.

Tesla CTO Toasts Hackers

While Rogers and Mahaffey were explaining their hacks at Def Con 23 last Friday, Tesla CTO J. B. Straubel made a surprise appearance to offer them a toast and personally thank them for their work. J.B. presented the duo with “Challenge Coins,” which will Tesla will be giving to any researcher who finds a serious security hole in their vehicles.

Tesla's approach to distribute vulnerability and feature updates through over-the-air technology, similar to how one updates software on their mobile device, clearly puts it steps ahead of other automakers.

Chris Evans, who previously worked on Google’s elite Project Zero research team, became head of digital security at Tesla this past week. He was involved in the software update that the company has now sent to all customers. “This gives me really high hopes with Tesla going forward," says Mahaffey. “I would like to see what they’ve done as a reference model for others. I think they’ve got lessons to learn but they’re 75 per cent there."

As cars acquire more digital capability, the opportunities for outside interference either by "white hat" hackers or those bent on doing actual harm will increase. Tesla, though, has the most robust program for identifying and resolving digital security issues of any manufacturer. That commitment should give every Tesla owner and prospective owner a full measure of confidence in the integrity of Tesla automobiles, now and in the future.

News

Tesla eyes two new states for Robotaxi

Published

on

Credit: @TerrapinTerpene/X

Tesla has officially shown that it is eyeing two new states for Robotaxi operation in the U.S., as it hopes to add the new areas to its ever-growing list of places where the suite is either active or in the testing phase.

Tesla first launched its Robotaxi suite in Austin, Texas, in late June. It expanded the suite to the San Francisco Bay Area just a month later. Since then, it has not launched any public rides in any other states, but it has gained several approvals for early testing.

Tesla officially launches Robotaxi service with no driver

In preparation for operation in new states, Tesla routinely lists job postings on its Careers website, which helps align potential employees with opportunities ahead of regulatory approvals. This is a strategy that allows Tesla to start operations immediately upon licensing for testing.

Tesla started hiring Vehicle Operators for Autopilot in Arizona and Nevada months before the company gained any sort of approvals from state governments for Robotaxi. However, those approvals eventually came in the form of testing licenses, which allow the company to perform validation ahead of its public launch.

Advertisement

Tesla begins validating Robotaxi in a new area, hinting at expansion

Now, Tesla has posted job listings for Vehicle Operators for Autopilot in two new states: Colorado and Illinois. The Colorado job listing is located in Aurora, a suburb of Denver. Tesla is looking for Robotaxi operators in Chicago as well.

These postings hint toward Tesla’s continuing efforts to expand Robotaxi to new places. Earlier this year, CEO Elon Musk said the company would like to have Robotaxi available to at least half of the U.S. population.

It has expanded significantly since its initial launch in late June, but it is still a far way off from where Tesla would like it to be by year’s end.

So far, Tesla has job listings for Autopilot Vehicle Operators in Arizona, California, Texas, Florida, Colorado, Nevada, and Illinois.

Advertisement
Continue Reading

Elon Musk

Tesla launched an ad for Elon Musk’s pay package on Paramount+

Published

on

Credit: Tesla

Tesla’s advertising strategy has taken a drastic turn as the company’s upcoming Shareholder Meeting will feature perhaps the most crucial vote in its history: the approval of CEO Elon Musk’s new pay package.

For years, the issue of Tesla’s advertising and marketing strategy has been a major point of conversation for investors in fans. It seems to be split right down the middle, with half wanting Tesla to set aside some money for advertising. The other half, just the opposite.

Tesla has been transparent that the money it would spend on advertising, marketing, and public relations is better set aside for the development of future products.

However, it has recently adopted a different tone in advertising, pushing some commercials on social media platforms like X and Instagram.

For the first time, an ad was seen on streaming services like Paramount+, but it wasn’t promoting Tesla’s products directly. Instead, it was more of a message for shareholders to vote on Musk’s pay package, something Tesla feels is a necessity:

Advertisement

“The future of Tesla is in your hands,” the ad reads at the end. It seems as if Tesla is taking whatever steps it needs to accomplish the task of getting Musk a new pay package and retaining him as its CEO.

On September 5, Tesla officially outlined its plans for a CEO Performance Award for Musk. It would require him to lift Tesla’s market capitalization to about $8.5 trillion, up from the $1.36 trillion it sits at today.

Advertisement

Elon Musk’s new pay plan ties trillionaire status to Tesla’s $8.5 trillion valuation

It is obvious that Tesla is really hoping to get the pay package passed and is willing to shift some of its budget to encourage shareholders to vote.

However, there are some interesting perspectives on the move, and it’s sort of strange to see Tesla not advertising its vehicles or products, but only its pay package that would get its CEO paid.

Some of those who saw the ad are questioning the strategy:

Advertisement
Continue Reading

News

Tesla Robotaxi testing in Arizona is ramping up quickly

Published

on

Credit: Tesla

Tesla is validating Robotaxi in a new area, and as the company has continued to gain some additional permissions to begin testing in new states, it seems its Full Self-Driving-based ride-hailing project is moving toward a larger footprint.

Two Robotaxi units with LiDAR validation equipment were spotted in Gilbert, Arizona, recently, showing that Tesla is aiming to launch its ride-hailing service in the state soon:

Another unit was spotted in Tempe, Arizona:

Advertisement

These types of validation vehicles have been spotted in several areas ahead of their launch as a public ride-hailing service for passengers. Tesla first launched Robotaxi in Austin, Texas, back in late June, and since then, it has expanded to the Bay Area of California.

However, Tesla has continued to attempt to expand Robotaxi to other areas as well, including Nevada and Arizona. It has also been working toward approvals in other states based on job postings, as Tesla is hiring for Autopilot Vehicle Operators in New York and Florida, as well.

The expansion of the Robotaxi ride-hailing service has been an effort that Tesla has been spending a lot of time on over the past few months. CEO Elon Musk said the expansion aims to bring Robotaxi to at least half of the U.S. population by the end of the year, but there is still plenty of work to be done.

Advertisement

Tesla Robotaxi heads to a new major Texas city for the first time

Tesla did make its Robotaxi app public in recent months, allowing more members of the public to experience the suite for themselves, as long as they could get to Austin or the Bay Area.

In the coming months, it seems more apparent that Tesla will take a broader focus on expanding Robotaxi, especially with the fact that these validation vehicles are being spotted throughout different parts of the United States.

Continue Reading

Trending