News
Tesla cybersecurity measures fail, hackers win Model 3 at hacking event
Tesla has been hacked at the Pwn2Own hacking event, and the hacking group has taken home a Tesla Model 3 and $100,000.
As electric vehicles and their significant amount of integrated software have become more common in everyday life, the security around them has become significantly more critical. In the worst-case scenario, a hacker could not only gain access to a car but could leak user data or even take control of the vehicle. Now, at the Pwn2Own hacking competition, a group of hackers successfully hacked a Tesla Model 3 and won the vehicle along with a $100,000 prize.
The successful hack completed by the group Synactiv was initially reported by the Zero Day Initiative Twitter account, revealing that the group had used a TOCTOU exploit to gain access to the vehicle.
One of the main highlights from Day One of #Pwn2Own Vancouver 2023: @Synacktiv vs the Tesla Model 3. Their successful demonstration earned them $100,000 and the car itself pic.twitter.com/d7TY5mKHxK
— Zero Day Initiative (@thezdi) March 23, 2023
CONFIRMED! @Synacktiv successfully executed a TOCTOU exploit against Tesla – Gateway. They earn $100,000 as well as 10 Master of Pwn points and this Tesla Model 3. #Pwn2Own #P2OVancouver pic.twitter.com/W61NasJPAl
— Zero Day Initiative (@thezdi) March 22, 2023
Thanks to the nature of the hacking competition, the details of how the hack was performed have not been made entirely public to avoid a security risk for Tesla owners. Still, the method the hackers used was relatively straightforward.
The TOCTOU (Time-Of-Check Time-Of-Use) exploit involves altering internal files to gain system access. In essence, the hackers are altering the files that a system will check to ensure someone actually should have access. This could, for example, involve changing login credentials to allow yourself access. However, as the name suggests, this is highly time-dependent, as it involves using the discrepancy of time between the system checking the files and a person actually being logged in.
Pwn2Own is one of the most famous hacking events in the world. It involves teams of hackers attempting to gain access to some of the most popular software available on the market. Each group of hackers and security researchers will be given a list of devices and software and a series of objectives to achieve. The first team to navigate through the list gains a cash prize. In this case, for completing this step of the competition quickest, the Synactive team won the Tesla Model 3 that they hacked.
With software becoming ever more interconnected with the vehicles we drive, focusing on keeping that software secure will only become more important as time passes. And with the increasing interconnectedness of these car systems, the consequences of not keeping these systems secure will only become more dire. Hopefully, automakers will take this threat seriously and continue to work to keep their items as safe and secure as possible.
What do you think of the article? Do you have any comments, questions, or concerns? Shoot me an email at william@teslarati.com. You can also reach me on Twitter @WilliamWritin. If you have news tips, email us at tips@teslarati.com!
Tesla has expanded its branded ‘For Business’ Supercharger program that it launched last year, as yet another company is using the platform to attract EV owners to its business and utilize a unique advertising opportunity.
Francis Energy of Oklahoma is launching four Superchargers in Norman, where the University of Oklahoma is located. The Superchargers, which are fitted with branding for Francis Energy, will officially open tomorrow.
It will not be the final Supercharger location that Francis Energy plans to open, the company confirmed to EVWire.
Back in early September, Tesla launched the new “Supercharger for Business” program in an effort to give businesses the ability to offer EV charging at custom rates. It would give their businesses visibility and would also cater to employees or customers.
“Purchase and install Superchargers at your business,” Tesla wrote on a page on its website for the new program. “Superchargers are compatible with all electric vehicles, bringing EV drivers to your business by offering convenient, reliable charging.”
The first site opened in Land O’ Lakes, Florida, which is Northeast of Tampa, as a company called Suncoast launched the Superchargers for local EV owners.
Tesla launches its new branded Supercharger for Business with first active station
The program also does a great job at expanding infrastructure for EV owners, which is something that needs to be done to encourage more people to purchase Teslas and other electric cars.
Francis Energy operates at least 14 EV charging locations in Oklahoma, spanning from Durant to Oklahoma City and nearly everywhere in between. Filings from the company, listed by Supercharge.info, show the company’s plans to convert some of them to Tesla Superchargers, potentially utilizing the new Supercharger for Business program to advertise.
Moving forward, more companies will likely utilize Tesla’s Supercharger for Business program as it presents major advantages in a variety of ways, especially with advertising and creating a place for EV drivers to gain range in their cars.
Tesla Cybercab is perhaps the most highly-anticipated project that the company plans to roll out this year, and as it is undergoing its testing phase in pre-production currently, there are some things to work through with it.
Over the weekend, an image of the Cybercab being loaded onto a tow truck started circulating on the internet, and people began to speculate as to what the issue could be.
Hmmmmmm… https://t.co/L5hWcOXQkb pic.twitter.com/OJBDyHNTMj
— TESLARATI (@Teslarati) January 11, 2026
The Cybercab can clearly be seen with a Police Officer and perhaps the tow truck driver by its side, being loaded onto, or even potentially unloaded from, the truck.
However, it seems unlikely it was being offloaded, as its operation would get it to this point for testing to begin with.
It appears, at first glance, that it needs assistance getting back to wherever it came from; likely Gigafactory Texas or potentially a Bay Area facility.
The Cybercab was also spotted in Buffalo, New York, last week, potentially undergoing cold-weather testing, but it doesn’t appear that’s where this incident took place.
It is important to remember that the Cybercab is currently undergoing some rigorous testing scenarios, which include range tests and routine public road operation. These things help Tesla assess any potential issue the vehicle could run into after it starts routine production and heads to customers, or for the Robotaxi platform operation.
This is not a one-off issue, either. Tesla had some instances with the Semi where it was seen broken down on the side of a highway three years ago. The all-electric Semi has gone on to be successful in its early pilot program, as companies like Frito-Lay and PepsiCo. have had very positive remarks.
The Cybercab’s future is bright, and it is important to note that no vehicle model has ever gone its full life without a breakdown. It happens, it’s a car.
Nevertheless, it is important to note that there has been no official word on what happened with this particular Cybercab unit, but it is crucial to remember that this is the pre-production testing phase, and these things are more constructive than anything.
Tesla analyst Andrew Percoco of Morgan Stanley teased the company’s dominance in its self-driving initiative, stating that its lead over competitors is “not even close.”
Percoco recently overtook coverage of Tesla stock from Adam Jonas, who had covered the company at Morgan Stanley for years. Percoco is handling Tesla now that Jonas is covering embodied AI stocks and no longer automotive.
His first move after grabbing coverage was to adjust the price target from $410 to $425, as well as the rating from ‘Overweight’ to ‘Equal Weight.’
Percoco’s new note regarding Tesla highlights the company’s extensive lead in self-driving and autonomy projects, something that it has plenty of competition in, but has established its prowess over the past few years.
He writes:
“It’s not even close. Tesla continues to lead in autonomous driving, even as Nvidia rolls out new technology aimed at helping other automakers build driverless systems.”
Percoco’s main point regarding Tesla’s advantage is the company’s ability to collect large amounts of training data through its massive fleet, as millions of cars are driving throughout the world and gathering millions of miles of vehicle behavior on the road.
This is the main point that Percoco makes regarding Tesla’s lead in the entire autonomy sector: data is King, and Tesla has the most of it.
One big story that has hit the news over the past week is that of NVIDIA and its own self-driving suite, called Alpamayo. NVIDIA launched this open-source AI program last week, but it differs from Tesla’s in a significant fashion, especially from a hardware perspective, as it plans to use a combination of LiDAR, Radar, and Vision (Cameras) to operate.
Percoco said that NVIDIA’s announcement does not impact Morgan Stanley’s long-term opinions on Tesla and its strength or prowess in self-driving.
NVIDIA CEO Jensen Huang commends Tesla’s Elon Musk for early belief
And, for what it’s worth, NVIDIA CEO Jensen Huang even said some remarkable things about Tesla following the launch of Alpamayo:
“I think the Tesla stack is the most advanced autonomous vehicle stack in the world. I’m fairly certain they were already using end-to-end AI. Whether their AI did reasoning or not is somewhat secondary to that first part.”
Percoco reiterated both the $425 price target and the ‘Equal Weight’ rating on Tesla shares.
Tesla expands its branded ‘For Business’ Superchargers
Tesla Cybercab ‘breakdown’ image likely is not what it seems
