Researchers at NCC Group have created a new type of Bluetooth Low Energy (BLE) relay attack that can bypass existing relay attack protections. Excerpts:
- The Tesla Model 3 and Model Y employ a Bluetooth Low Energy (BLE) based passive entry system. This system allows users with an authorized mobile device or key fob within a short range of the vehicle to unlock and operate the vehicle, with no user interaction required on the mobile device or key fob.
- NCC Group has developed a tool for conducting a new type of BLE relay attack …
- This approach can circumvent the existing relay attack mitigations … and bypass localization defenses…
- If an attacker can place a relaying device within BLE signal range of a mobile phone or key fob authorized to access a Tesla Model 3 or Model Y, they can conduct a relay attack to unlock and operate the vehicle.
About the Author
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.
