Hyundai, Kia patch bug permitting automotive thefts with a USB cable
Automakers Hyundai and KIA are rolling out an emergency software program replace on a number of of their automotive fashions impacted by a simple hack that makes it attainable to steal them.
“In response to rising thefts concentrating on its autos with out push-button ignitions and immobilizing anti-theft units in the USA, Hyundai is introducing a free anti-theft software program improve to stop the autos from beginning throughout a technique of theft popularized on TikTok and different social media channels,” reads Hyundai’s announcement.
The automotive hack has been closely promoted on TikTok as a “problem” since July 2022, with movies exhibiting methods to take away the steering column cowl to disclose a USB-A slot that can be utilized to hotwire the automotive.
The difficulty lies in a logic flaw that enables the “turn-key-to-start” system to bypass the immobilizer that verifies the authenticity of the code in the important thing’s transponder to the automotive’s ECU. This enables thieves to forcibly activate the ignition cylinder utilizing any USB cable to start out the automobile.
The impression of the so-called “Kia Problem” was so vital that in Los Angeles, the 2 manufacturers had a steep 85% improve in thefts in 2022 in comparison with the earlier yr, whereas Chicago reported a nine-fold rise for a similar.
The US Division of Transportation (NHTSA) revealed a submit yesterday explaining that the safety flaw impacts roughly 3.8 million Hyundai autos and 4.5 million KIA vehicles.
The company additionally said that these hacks have resulted in at the very least 14 confirmed automotive crashes and eight fatalities.
Software program improve underway
Since November 2022, the 2 automotive manufacturers have been working with legislation enforcement companies throughout the USA to offer tens of hundreds of steering wheel locks. Nonetheless, a software program replace will now higher remedy the safety downside.
The software program improve will likely be supplied freed from cost for all impacted autos, with the rollout beginning yesterday to greater than 1 million 2017-2020 Elantra, 2015-2019 Sonata, and 2020-2021 Venue vehicles.
The second rollout part will likely be accomplished till June 2023 and will likely be for the next fashions:
- 2018-2022 Accent
- 2011-2016 Elantra
- 2021-2022 Elantra
- 2018-2020 Elantra GT
- 2011-2014 Genesis Coupe
- 2018-2022 Kona
- 2020-2021 Palisade
- 2013-2018 Santa Fe Sport
- 2013-2022 Santa Fe
- 2019 Santa Fe XL
- 2011-2014 Sonata
- 2011-2022 Tucson
- 2012-2017, 2019-2021 Veloster
The free improve will likely be put in on Hyundai’s official sellers and repair community within the U.S. and can take lower than an hour. Eligible automotive house owners will likely be notified by the carmaker individually.
The announcement explains that the software program improve will modify the “turn-key-to-start” logic to kill the ignition when the automotive proprietor locks the doorways utilizing the real key fob. After the improve, the ignition will solely activate if the important thing fob is used to unlock the automobile.
Hyundai may even provide its clients with a window sticker that makes it clear to aspiring thieves that the automotive’s software program has been upgraded to neutralize the social-media-promoted hack, discouraging any makes an attempt.
For fashions with no engine immobilizers that can’t obtain the fixing software program improve, Hyundai will cowl the price of steering wheel locks for his or her house owners.
KIA has additionally promised to start out the rollout of its software program improve quickly however has not launched any bulletins with particular dates or particulars but.
