A team of researchers has discovered a way to hack Tesla's infotainment system, allowing them to download free upgrades that they would normally have to pay for – like heated rear seats.
Researchers have essentially found a way to jailbreak the car. The hack may allow owners to activate the autonomous driving and navigation system in areas where it is not normally available, such as they said researchers at TechCrunch, though they admitted they haven't tested those features yet, as that would require more effort.
The researchers will present their research next week at the Black Hat security conference in Las Vegas.
Christian Werling, one of three students at Technische Universität Berlin who conducted the research along with another independent researcher, said their attack requires physical access to the car.
"We're not evil outsiders, but we're actually insiders, we have the car," Werling told TechCrunch in an interview ahead of the conference. "And we don't want to pay that $300 for rear heated seats."
The technique they used to jailbreak the Tesla is called voltage glitching. Werling explained that they "sculpted" the supply voltage of the AMD processor running the entertainment system.
“If we do it at the right time, we can trick the CPU into doing something else. It causes a hiccup, skips an instruction, and accepts our tampered code. This is what we do in a few words".
Using the same technique, the researchers said they were able to extract the encryption key used to authenticate the car to Tesla's network. In theory, this would open the door for many other attacks, but the researchers said they need to explore the possibilities this scenario gives them.
The researchers were also able to extract personal information from the car, such as contacts, recent calendar appointments, call logs, locations the car visited, Wi-Fi passwords, and session tokens from email accounts, among others.
Blocking the hardware-based attack that the researchers achieved is not simple. In fact, they indicated that Tesla should replace the hardware in question.