Honda's Keyless Access Bug Could Let Thieves Remotely Unlock and Start Vehicles

A duo of researchers has released a proof-of-concept PoC demonstrating the ability for a malicious actor to remote lock, unlock, and even start Honda and Acura vehicles by means of what's called a replay attack. The attack is made possible, thanks to a vulnerability in its remote keyless system...

CVE-2018-16806

The CVE-2018-16806 entry concerns a Pektron Passive Keyless Entry and Start (PKES) system used in the Tesla Model S (and possibly other vehicles) that relies on the DST40 cipher. The vulnerability is described as enabling an attacker to clone a key fob within a few seconds after a 5.4 TB precompu...