Tag: Elon | Page 3

Elon Musk’s Starlink satellites hacked by $25 homemade device

September 6, 2022/in Internet Security

A $25 hacking tool that can seemingly breach Starlink’s internet terminals has been revealed by a security researcher.

As reported by Wired and Gizmodo, Lennert Wouters, who works at Belgian university KU Leuven, showcased how to infiltrate the satellite dishes at the Black Hat Security Conference.

For reference, Starlink was started by Elon Musk with the aim of providing internet connections around the world. By launching 3,000 satellites into orbit, the company has attracted over 500,000 subscribers.

However, Wouters has now found a way to hack into the dishes due to various hardware vulnerabilities. If left exposed, this would give threat actors free rein to access Starlink’s system and then run custom code on the network’s devices.

In order to find any exploits within the satellite dish’s software, Wouters purchased a dish and attached his hacking device onto it. The tool itself was formed via a custom circuit board (modchip), with the price of the overall parts required for the device costing just $25.

The homemade printed circuit board (PCB) is then capable of shorting the system, albeit temporarily, via a fault injection attack — this method, or glitch, was used to circumvent the security measures Starlink has in place.

After revealing the hack at his presentation, Wouters released the tool on GitHub, which gives a breakdown on how to perform the attack itself.

Starlink was made aware of the security defects last year by Wouters himself, and even paid the researcher for his efforts via its bug bounty scheme.

Even though parent company SpaceX patched the vulnerabilities at the time — prompting Wouters to modify the modchip — it seems the core issue cannot be resolved without a new model of the main chip being produced. As such, he stated that every user terminal associated with Starlink is currently exposed.

A public update was confirmed to be in the works by Starlink, but Wouters stressed that the nature of the company’s operations exposes them either way. “The widespread availability of Starlink User Terminals (UT) exposes them to hardware hackers and opens the door for an attacker to freely explore the network,” he said.

“Our attack results in…

Source…

Elon Musk, Could This Hack Get Your Tesla Stolen?

June 11, 2022/in Computer Security

Image for article titled Could This Hack Get Your Tesla Stolen? — Photo: Spencer Platt (Getty Images)

Tesla’s cars are notoriously hackable, and a new video demonstrates a way an adept cybercriminal could hop inside your car’s system and take it for a ride if they’re nearby.

First reported by Ars Technica, the exploit involves manipulation of a relatively new feature that Tesla added last August. The feature allows drivers to turn on their vehicles merely by opening the car’s door with a near-field communication (NFC) key card. Those cards come with all Tesla Model 3 vehicles and use short range radio-frequency identification (RFID) signals to interact with the car’s computer system. Unlocking the door launches a 130 second period where the car starts up all on its own. It allows the driver to have the car running as soon as their butt is in the seat.

But that new mode is also vulnerable to a unique exploit that could get your sweet ride jacked, according to Martin Herfurt, an Austrian security researcher. Herfurt says that Tesla’s feature doesn’t just turn your car on automatically; it also puts it in a state where the vehicle is open to “whitelisting” new keys to unlock the car door. Aside from NFC cards, Tesla Model 3s can also be unlocked with either a key fob or a Tesla mobile app registered to the owner’s account.

Herfurt created his own mobile app, which he dubbed the “TeslaKee,” that communicates with the feature in VCsec—the language that the Tesla app uses to chat with Tesla vehicles—and which he says is able to “whitelist” itself as a key that can open the car’s doors. Keys can be remotely added in this way by abusing the new feature, with no authentication requirements necessary to add them, Herfurt claims. He made a YouTube video showing how the exploit could work. It’s pretty damn simple. You can check it out down below:

Granted, the situation you would have to be in for this to happen is ridiculous. First, the hacker would have to do what Herfurt has done, and engineer their own app. Then, they’d have to sit around and wait for you to park your car. Then, presumably, they’d execute the exploit, and trail you until you reached a destination and got out. Then, yes, they could hijack your ride. A…

Source…

Elon Musk FINALLY SAID I Will Stop Russia Ukraine War

June 9, 2022/in Video

Elon Musk deep fakes promote new cryptocurrency scam

May 22, 2022/in Computer Security

Elon Musk

Cryptocurrency scammers are using deep fake videos of Elon Musk and other prominent cryptocurrency advocates to promote a BitVex trading platform scam that steals deposited currency.

This fake BitVex cryptocurrency trading platform claims to be owned by Elon Musk, who created the site to allow everyone to earn up to 30% returns on their crypto deposits.

This scam campaign started earlier this month with threat actors creating or hacking existing YouTube accounts to host deep fake videos of Elon Musk, Cathie Wood, Brad Garlinghouse, Michael Saylor, and Charles Hoskinson.

These videos are legitimate interviews modified with deep fake technology to use the person’s voice in a script provided by the threat actors.

An example of one of the scam videos can be seen below, where Elon promotes the new scam site and says he invested $50 million into the platform.

However, if you look carefully, you will see that the deep fake synchronizes the person’s talking to the threat actor’s script, which is so silly as to be comical.

How do we know this is a scam?

While it is obvious that the interviews have been altered to simulate Elon Musk’s voice to promote the BitVex trading platform, numerous other clues show that this is a scam.

Many YouTube channels promoting this trading platform have been hacked to suddenly show YouTube videos or YouTube Shorts that promote the BitVex trading site.

For example, a YouTube channel that displayed gaming videos in Arabic suddenly began showing a series of YouTube Shorts that promoted the BitVex scam. In addition, BleepingComputer has found dozens of other YouTube channels hijacked similarly to promote this scam.

**YouTube Shorts promoting BitVex on hacked YouTube channels**
*Source: BleepingComputer*

Once you visit the BitVex trading site itself, it becomes more apparent that this is a scam.

For example, the site claims that Elon Musk is the CEO of the trading platform and contains endorsements from Ark Invest’s Cathie Wood and Binance CEO Changpeng Zhao.

**Site claiming that Elon Musk is the CEO**
*Source: BleepingComputer*

To use the BitVex platform, users must register an account at bitvex[.]org or bitvex[.]net to access the investment platform.

Once you log in, the…

Source…

Tag Archive for: Elon

How do we know this is a scam?