cybersecurity

5035 readers

11 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Be kind
Limit promotional activities
Non-cybersecurity posts should be redirected to other communities within infosec.pub.

Enjoy!

founded 2 years ago

MODERATORS

shellsharks

tweedge

163

Flipper Zero 'DarkWeb' Firmware Bypasses Rolling Code Security on Major Vehicle Brands (cybersecuritynews.com)

submitted 1 month ago by cm0002@lemmy.world to c/cybersecurity

27 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] atrielienz@lemmy.world 10 points 1 month ago* (last edited 1 month ago) (1 children)

Technically, the other fob shouldn't be affected if it works the way I think it does. There's usually a maximum number of keys synced to the vehicle.

This attack basically forces the key fob the flipper zero is substituting itself for to fall out of sync because the flipper zero doesn't transmit the rollover response from the vehicle back to the key fob. So the F0 sends the rolling code it intercepted from the key fob to the vehicle. Vehicle is like, yep, that's matches, and then it does it's rollover and sends out the rollover response. The response doesn't get back to the key because of range etc and then the key remains a step behind the vehicle in the rollover sequence from then on out.

Technically I think ~~they~~ the key could potentially be resynced to the car. (My understanding is that a key of the correct type could be synced to any car that it can be programmed for so long as the key isn't physically damaged, and the security module isn't compromised with malicious code that would prevent it).

[–] IllNess 3 points 1 month ago

Yeah. This is what I assumed also. Thanks for your input.