Investigative tech journalism site 404 Media published an in-depth report on the development Thursday morning. The story highlights how hackers are abusing the $199 Flipper Zero—a device defined by its creators as “a versatile tool for hardware exploration, firmware flashing, debugging, and fuzzing”—to unlock vehicles without a key fob.
404 Media spoke with a Russia-based hacker named Daniel, who says he developed the “Unleashed” firmware that enables devices to execute more RFID and USB attacks. “Maybe someone is using it to steal from cars or steal cars,” Daniel said, after alleging that the firmware is “in demand” with locksmiths and car shop owners. He sells the Flipper Zero patches for either $600 or $1,000, depending on whether customers simply want the latest version or updates with further support.
IIRC immobilisers aren’t mandatory in the US, hence their recent troubles with cars being hijacked using silliest methods possible.
Not mandatory, but common. It’s at the core of all the Hyundai/Kia thefts. They do not have immobilizers, but nearly everything else does (since the 90s)
Oh wow, my trusty 19yo car locks the steering wheel unless I turn the key, plus it has some additional electronics embedded in the key. That was broken some time ago and the car would crank but refuse to start.