Researchers have found that hackers could easily hijack WiFi networks at Tesla charging stations to steal vehicles — a glaring cybersecurity vulnerability that only requires an affordable, off-the-shelf tool.
“Phishing and social engineering attacks are very common today, especially with the rise of AI technologies, and responsible companies must factor in such risks in their threat models.”
Cybersecurity researchers have long rung alarm bells over the use of keyless entry in the car industry, which leave modern vehicles at risk of being stolen.
Using their weapon of choice, hackers create a spoof WiFi network called “Tesla Guest” that masquerades as the real thing.
If a victim were to try to access the network, which the EV maker normally provides free of charge to waiting customers, they could be duped into giving up their login by entering it into a duplicate site.
Once he told Tesla about his findings, the EV maker underplayed the vulnerability, telling him it was all by design and “intended behavior,” an assertion that Mysk called “preposterous” in his interview with Gizmodo.
The original article contains 428 words, the summary contains 175 words. Saved 59%. I’m a bot and I’m open source!
This is the best summary I could come up with:
Researchers have found that hackers could easily hijack WiFi networks at Tesla charging stations to steal vehicles — a glaring cybersecurity vulnerability that only requires an affordable, off-the-shelf tool.
“Phishing and social engineering attacks are very common today, especially with the rise of AI technologies, and responsible companies must factor in such risks in their threat models.”
Cybersecurity researchers have long rung alarm bells over the use of keyless entry in the car industry, which leave modern vehicles at risk of being stolen.
Using their weapon of choice, hackers create a spoof WiFi network called “Tesla Guest” that masquerades as the real thing.
If a victim were to try to access the network, which the EV maker normally provides free of charge to waiting customers, they could be duped into giving up their login by entering it into a duplicate site.
Once he told Tesla about his findings, the EV maker underplayed the vulnerability, telling him it was all by design and “intended behavior,” an assertion that Mysk called “preposterous” in his interview with Gizmodo.
The original article contains 428 words, the summary contains 175 words. Saved 59%. I’m a bot and I’m open source!
Thanks, the website doesn’t provide “opt out of all legitimate interest” button and it has 857 vendors enabled.