GoDaddy: Hackers stole source code, installed malware in multi-year breach
Bing Chat's secret modes turn it into a personal assistant or friend Auto Cables And Accessories
Fortinet fixes critical RCE flaws in FortiNAC and FortiWeb
FBI is investigating a cybersecurity incident on its network
Windows 11 KB5022905 preview update released with 13 changes
Get a refurbished iPad mini 4 with accessory bundle for just $139.99
Activision confirms data breach exposing employee and game info
Emergency VMware ESXi update fixes Windows Server 2022 VM boot issues
Remove the Theonlinesearch.com Search Redirect
Remove the Smartwebfinder.com Search Redirect
How to remove the PBlock+ adware browser extension
Remove the Toksearches.xyz Search Redirect
Remove Security Tool and SecurityTool (Uninstall Guide)
How to remove Antivirus 2009 (Uninstall Instructions)
How to Remove WinFixer / Virtumonde / Msevents / Trojan.vundo
How to remove Google Redirects or the TDSS, TDL3, or Alureon rootkit using TDSSKiller
Locky Ransomware Information, Help Guide, and FAQ
CryptoLocker Ransomware Information Guide and FAQ
CryptorBit and HowDecrypt Information Guide and FAQ
CryptoDefense and How_Decrypt Ransomware Information Guide and FAQ
How to open a Windows 11 Command Prompt as Administrator
How to make the Start menu full screen in Windows 10
How to install the Microsoft Visual C++ 2015 Runtime
How to open an elevated PowerShell Admin prompt in Windows 10
How to start Windows in Safe Mode
How to remove a Trojan, Virus, Worm, or other Malware
How to show hidden files in Windows 7
How to see hidden files in Windows
Automakers Hyundai and KIA are rolling out an emergency software update on several of their car models impacted by an easy hack that makes it possible to steal them.
"In response to increasing thefts targeting its vehicles without push-button ignitions and immobilizing anti-theft devices in the United States, Hyundai is introducing a free anti-theft software upgrade to prevent the vehicles from starting during a method of theft popularized on TikTok and other social media channels," reads Hyundai's announcement.
The car hack has been heavily promoted on TikTok as a "challenge" since July 2022, with videos showing how to remove the steering column cover to reveal a USB-A slot that can be used to hotwire the car.
The issue lies in a logic flaw that allows the "turn-key-to-start" system to bypass the immobilizer that verifies the authenticity of the code in the key's transponder to the car's ECU. This allows thieves to forcibly activate the ignition cylinder using any USB cable to start the vehicle.
The impact of the so-called "Kia Challenge" was so significant that in Los Angeles, the two brands had a steep 85% increase in thefts in 2022 compared to the previous year, while Chicago reported a nine-fold rise for the same.
The United States Department of Transportation (NHTSA) published a post yesterday explaining that the security flaw impacts approximately 3.8 million Hyundai vehicles and 4.5 million KIA cars.
The agency also stated that these hacks have resulted in at least 14 confirmed car crashes and eight fatalities.
Since November 2022, the two car brands have been working with law enforcement agencies across the United States to provide tens of thousands of steering wheel locks. Still, a software update will now better solve the security problem.
The software upgrade will be provided free of charge for all impacted vehicles, with the rollout starting yesterday to more than 1 million 2017-2020 Elantra, 2015-2019 Sonata, and 2020-2021 Venue cars.
The second rollout phase will be completed until June 2023 and will be for the following models:
The free upgrade will be installed on Hyundai's official dealers and service network in the U.S. and will take less than an hour. Eligible car owners will be notified by the carmaker individually.
The announcement explains that the software upgrade will modify the "turn-key-to-start" logic to kill the ignition when the car owner locks the doors using the genuine key fob. After the upgrade, the ignition will only activate if the key fob is used to unlock the vehicle.
Hyundai will also supply its customers with a window sticker that makes it clear to aspiring thieves that the car's software has been upgraded to neutralize the social-media-promoted hack, discouraging any attempts.
For models with no engine immobilizers that cannot receive the fixing software upgrade, Hyundai will cover the cost of steering wheel locks for their owners.
KIA has also promised to start the rollout of its software upgrade soon but has not released any announcements with specific dates or details yet.
Toyota, Mercedes, BMW API flaws exposed owners’ personal info
Arnold Clark customer data stolen in attack claimed by Play ransomware
Android 14 to block malware from abusing sensitive permissions
Over 12% of analyzed online stores expose private data, backups
Amazon S3 will now encrypt all new data with AES-256 by default
Automotive computers are just one epic fail after another. The token security systems are just laughable. The auto mfgs are often dismissive of problems and their electrical/computer engineers are not schooled in either physical nor digital security practices. The upshot being even high end luxury cars are often as easier to steal than a 40 year old Caprice.
Not a member yet? Register Now
Microsoft Outlook flooded with spam due to broken email filters
Windows 11 will let you end tasks directly from the taskbar
Terms of Use - Privacy Policy - Ethics Statement
Copyright @ 2003 - 2023 Bleeping Computer® LLC - All Rights Reserved
Not a member yet? Register Now
Energy Equipment Cable Read our posting guidelinese to learn what content is prohibited.