Flipper Zero can unlock rolling code security systems used by many automakers, including Mitsubishi and Subaru, in one shot. Is there an easy solution other than a major vehicle recall?



Electronic car keys implement a 'rolling code' security system that generates a different code with each click to prevent communications from being intercepted and reused. However, several security experts have pointed out that this security can be defeated.

Millions of cars at risk from Flipper Zero key fob hack, experts warn

https://san.com/cc/millions-of-cars-at-risk-from-flipper-zero-key-fob-hack-experts-warn/

Flipper Zero DarkWeb Firmware Bypasses Rolling Code Security
https://www.rtl-sdr.com/flipperzero-darkweb-firmware-bypasses-rolling-code-security/

Flipper Zero DarkWeb Firmware Clone Key Fobs! Here's How It Works! - YouTube


Rolling codes can be broken using an attack technique called 'RollJam.' In RollJam, an attacker intercepts and jams the first signal sent by the user's key, then intercepts the second signal sent by the user and sends it instead, allowing the attacker to freely use the second signal. However, if a third signal passes before the attacker can use the second signal, the second signal becomes unusable, meaning the attacker must constantly jam the signal after acquiring the second signal.

The RollBack attack has emerged as an alternative to this. The RollBack attack is unique in that it can be exploited any time and any number of times in the future without the need to disrupt the signal after the initial acquisition, making it particularly effective in car sharing and rental car services where keys are easily available.



A device that facilitates RollJam and RollBack is

Flipper Zero , a device that can emit various signals and is often used to hijack communications with commercially available smart keys.

Using custom firmware from Flipper Zero, allegedly created by Russian hackers, it is possible to emulate all rolling codes and unlock a car simply by receiving a signal from the key once.

Technology media Straight Arrow News points out that this is a 'RollBack attack by Flipper Zero.'



According to an infographic accompanying the firmware, vehicles affected by the attack include numerous models manufactured by Chrysler, Dodge, Fiat, Ford, Hyundai, Jeep, Kia, Mitsubishi and Subaru.

Talking Sasquach, who regularly covers Flipper Zero, said, 'One solution would be to inspect every vehicle and issue a software update, but that's probably not feasible and would be prohibitively expensive for manufacturers.'

・Continued
'The reports that Flipper Zero can easily steal cars are false,' the development team published an explanatory blog - GIGAZINE



Related Posts:

in Hardware,   Software,   Vehicle, Posted by log1p_kr