Connect with us
Tesla Pwn2Own Tesla Pwn2Own

News

Tesla cybersecurity measures fail, hackers win Model 3 at hacking event

Credit: Zero Day Initiative, Twitter

Published

on

Tesla has been hacked at the Pwn2Own hacking event, and the hacking group has taken home a Tesla Model 3 and $100,000.

As electric vehicles and their significant amount of integrated software have become more common in everyday life, the security around them has become significantly more critical. In the worst-case scenario, a hacker could not only gain access to a car but could leak user data or even take control of the vehicle. Now, at the Pwn2Own hacking competition, a group of hackers successfully hacked a Tesla Model 3 and won the vehicle along with a $100,000 prize.

The successful hack completed by the group Synactiv was initially reported by the Zero Day Initiative Twitter account, revealing that the group had used a TOCTOU exploit to gain access to the vehicle.

Thanks to the nature of the hacking competition, the details of how the hack was performed have not been made entirely public to avoid a security risk for Tesla owners. Still, the method the hackers used was relatively straightforward.

Advertisement

The TOCTOU (Time-Of-Check Time-Of-Use) exploit involves altering internal files to gain system access. In essence, the hackers are altering the files that a system will check to ensure someone actually should have access. This could, for example, involve changing login credentials to allow yourself access. However, as the name suggests, this is highly time-dependent, as it involves using the discrepancy of time between the system checking the files and a person actually being logged in.

Pwn2Own is one of the most famous hacking events in the world. It involves teams of hackers attempting to gain access to some of the most popular software available on the market. Each group of hackers and security researchers will be given a list of devices and software and a series of objectives to achieve. The first team to navigate through the list gains a cash prize. In this case, for completing this step of the competition quickest, the Synactive team won the Tesla Model 3 that they hacked.

With software becoming ever more interconnected with the vehicles we drive, focusing on keeping that software secure will only become more important as time passes. And with the increasing interconnectedness of these car systems, the consequences of not keeping these systems secure will only become more dire. Hopefully, automakers will take this threat seriously and continue to work to keep their items as safe and secure as possible.

What do you think of the article? Do you have any comments, questions, or concerns? Shoot me an email at william@teslarati.com. You can also reach me on Twitter @WilliamWritin. If you have news tips, email us at tips@teslarati.com!

Advertisement

Will is an auto enthusiast, a gear head, and an EV enthusiast above all. From racing, to industry data, to the most advanced EV tech on earth, he now covers it at Teslarati.

Advertisement
Comments

News

Tesla expands massive safety feature worldwide in latest update

Published

on

Credit: Tesla

Tesla has expanded the footprint of a massive safety feature worldwide with a recent Software Update labeled as 2026.20.6. The expansion of the “Blind Spot Warning While Parked” feature represents the more widespread availability of the feature, which aims to prevent “dooring.”

Dooring is when a driver or passenger opens a car door into the path of an oncoming road user, usually a cyclist or motorcyclist. It is among the most common types of cycling accidents, the League of American Bicyclists says.

For this reason, Tesla created a feature that warns occupants not to open the door because an object is approaching. The feature will sound a chime, and it will also delay the opening of the door to prevent an incident.

The release notes state (via Not a Tesla App):

Advertisement

“If you attempt to open a door while an approaching object is detected in your blind spot (for example, a bicyclist approaching from behind) a chime sounds, and your door will not open upon initial button press. Wait a short time and press the button a second time to override the warning.”

Tesla initially rolled out this feature back in 2024 with the Model 3 “Highland.” However, it remained with the Model 3 exclusively for over a year; that was until Tesla added it to the Cybertruck this past Spring.

Now, it is making its way to the new Model Y, 2021 and newer Model S, and 2021 or newer Model X.

The prevention of dooring incidents could eliminate many injuries to cyclists, especially in an urban setting. Dooring accounts for 10-20 percent of bike-related crashes in major cities, and over 17,000 dooring-related incidents were treated in the U.S. over the course of a decade. These usually involve fractures, contusions, and head trauma.

Advertisement
Continue Reading

News

Tesla sends production Cybercab with no steering wheel, pedals to on-road testing

Published

on

Credit: Tesla

Tesla confirmed this morning that it has sent the first production units, manufactured with no steering wheel or pedals, to on-road testing in Austin, sharing video of the first rides with no human controls.

The lack of steering wheels and pedals in the Cybercab aligns with Tesla’s self-certification of Robotaxi as Level 4 SAE, a platform it plans to make widespread through internal vehicles and customer-owned cars that will operate and generate revenue for individuals.

The start of these engineering tests is a major signal for Tesla, which plans to bring driverless, wheel-less, and pedal-less Cybercabs to market in the coming months. With production already well underway at Gigafactory Texas, where the Cybercab is built, there is some inclination to believe the first public rides could happen sooner rather than later.

Tesla’s engineering tests will put the Cybercab in real-world scenarios, testing not only the hardware, but more importantly, the software that drives the car around Austin with nobody supervising it within the car.

This is perhaps the biggest part of the internal testing process, especially prior to allowing regular, everyday people to hail the Cybercab for an autonomous ride. These early rides serve as a true benchmark for Tesla: How many rides can it achieve safely? How many miles did it travel consecutively without needing an intervention? What scenarios challenge the Full Self-Driving suite the most?

The proper precautions have already been put into place as well, as Tesla released the First Responders Guide to Cybercab over the weekend, ensuring that emergency services have 24/7 access to Robotaxi Assistance, as well as other boundaries, such as Geofencing features that can be used to redirect autonomous vehicle traffic due to accidents, road closures, construction, or maintenance.

Advertisement

Cybercab seems genuinely close to being added to the Robotaxi fleet in Austin, but Tesla has prioritized safety throughout this entire process. Therefore, we think it could be months before it truly starts giving rides to the public. People have been frustrated with this, but Robotaxi in Austin has a tremendous safety record so far, so the slow rollout has kept people safe and accidents to a minimum.

The most important thing is that Tesla continues to show consistent progress in the Cybercab’s ramp-up toward fleet addition. A few weeks back, we saw the EPA reward the Cybercab a Certificate of Conformity, allowing it to enter the stream of commerce. Then, we saw Tesla add decals, signaling that it was likely about to start testing it publicly. That has now happened.

The next big move will be the announcement of the first rides, so this Summer should be filled with anticipation.

Advertisement
Continue Reading

Elon Musk

Tesla Phone? Not quite, but close: analyst

Published

on

elon musk phone
Photo: Boss Hunting.com.au

For years, there have been images and videos across social media platforms that have reminded me of when I was a 15-year-old kid teased by “Xbox 720” videos on YouTube. These videos are of the supposed “Tesla Phone” that Elon Musk was secretly developing in between leading Tesla with its electric cars and SpaceX with its reusable rockets.

Although Musk has put those rumors to bed several times, it was never completely out of the realm that he could get involved in cell phones in some capacity. Think outside the box and more macro-level, though. Instead of reinventing the computer, Musk reinvented connectivity by developing Starlink with SpaceX.

Advertisement

It could be something similar, TD Cowen analyst Gregory Williams said in a note last week, where he hinted SpaceX could be gathering some steam to acquire T-Mobile.

Williams said it would be the “clear choice” for SpaceX if it decided to go through with a network acquisition. He also suggested AT&T.

The move would be possible through selling more of its own stock, which would help SpaceX raise the money to purchase T-Mobile, which would cost roughly $300 billion. It could be one of the moves SpaceX makes post-IPO in terms of an acquisition: it already acquired Cursor AI for $60 billion.

Other analysts, like Dan Ives of Wedbush, believe SpaceX and Tesla will eventually merge into one anyway, and that conglomeration could come as soon as this year, some have said.

Advertisement

The implications of SpaceX purchasing T-Mobile are massive. A combined entity would create a truly ubiquitous network: T-Mobile’s terrestrial 5G towers and Starlink’s growing constellation of Direct-to-Cell satellites. This would essentially eliminate dead zones across the U.S. and potentially globally.

SpaceX would instantly become a full-scale facilities-based carrier with satellite differentiation; a huge advantage. This would pressure AT&T and Verizon heavily.

There are also concerns like a potential reduction in long-term competition, and of course, a deal of that size would face intense scrutiny from government agencies.

The strategic fit is compelling due to the existing Starlink–T-Mobile partnership and complementary technologies (space + terrestrial). It could create a dominant integrated communications player. However, the regulatory, financial, and execution hurdles are enormous — this remains highly speculative with no indication SpaceX is actively pursuing it right now.

Advertisement
Continue Reading