Source: Sina Technology
On the evening of January 12, Beijing time, it was reported that David Colombo, a 19-year-old German security researcher, recently said that he found a software vulnerability in Tesla's system and remotely invaded more than 25 Tesla electric vehicles in 13 countries through this vulnerability, causing it to shut down the security system.
Colombo, who calls himself an "information technology expert," said on Twitter on Tuesday that the software vulnerability of Tesla motors allowed him to remotely open doors and windows, start the car without a key, and shut down the vehicle's security system.
Colombo also said it could see if there was a driver in the car, turned on the vehicle's sound system, and had the headlights flash.
"Imagine if you're driving on a highway and someone remotely turns on the music playback function (at maximum volume) or opens the windows and doors, it's quite dangerous," Colombo said. Even constantly flashing the headlights can have some dangerous effects on other drivers. ”
He said he could not remotely interfere with the operation of Tesla owners, nor could he drive the car remotely.
Colombo did not disclose details of the software vulnerability, but said the vulnerability was not within Tesla's software or infrastructure. In addition, Colombo also said that only a small percentage of Tesla owners around the world have been affected.
Some media outlets have sought comment on Colombo on Twitter, but have yet to receive a response. Tesla also did not immediately respond to reporters' requests for comment.
Tesla has a vulnerability disclosure platform where security researchers can register their vehicles for testing, and Tesla can pre-approve it. Previously, Tesla had paid $15,000 for a vulnerability.
Colombo also said he has been in touch with Tesla's security team, which is currently investigating the issue and will inform Colombo of the latest developments.