According to foreign media reports, a 19-year-old David Colombo who claims to be an information technology expert claims that he remotely hacked 25 Tesla cars in 13 countries. He also said in a series of tweets that he had found a software vulnerability in Tesla's system.
(Image source: Tesla)
On Jan. 11, David tweeted that the software flaw could allow him to remotely open Tesla's doors and windows, start the car without a key, and malfunction the car's security system. He also said he could tell if there was a driver in the car and turn on the vehicle's stereo system and flash the headlights.
"I think when you're driving on the highway, it's very dangerous if someone is able to remotely control your car, turn the music to maximum volume or open doors and windows. Even just flashing the headlights can be potentially dangerous for other drivers. David tweeted.
David did not disclose specific details of the Tesla software vulnerability, but said the vulnerability was not within Tesla's software or infrastructure, adding that only a handful of Tesla vehicles worldwide were affected. His tweets sparked a strong response, being retweeted more than 800 times.
Journalists tweeted to David asking for comment, but received no immediate response. A Tesla spokesperson in China also declined to comment.
According to an online report, Tesla has a dedicated vulnerability disclosure platform where security researchers can register vehicles for testing and Tesla can approve testing. Tesla pays up to $15,000 in rewards for finding eligible vulnerabilities.
David revealed that he had gotten in touch with Tesla's security team and said they were investigating the issue. Tesla said it would keep him up to date with any updates.
![The new Ghost Vulnerability Mitigation will hit CPU performance hard, but gamers can escape it[fig]](data:image/gif;base64,R0lGODlhAQABAIAAAP///wAAACwAAAAAAQABAAACAkQBADs=)