The Future of Hi-Tech Auto Theft

NicknamesAreStupid writes "Over the past twenty years, car theft has declined as new models incorporated electronic security methods that thwarted simple hot-wiring. The tide may now be turning, as cars become the next Windows PC. The Center for Automobile Embedded Systems Security has posted an interesting paper from UCSD and UW that describes how modern cars can be cracked (PDF). Unlike the old days of window jimmies, these exploits range from attacks through the CD or iPod port to cellular attacks that take inventory of thousands of cars and offer roaming thieves Yelp-like choices ('our favorite is mint green with leather') with unlocked doors and running engines."

Yes,

[Moheeheeko]

Yes I would download a car.

MagnaVolt

[sycodon]

I'll stick with my trusty MagnaVolt System. [youtube.com]

Re:

[account_deleted]

Comment removed based on user account deletion

Re:

[Hoi Polloi]

Wait until 3D printer copies of your car start appearing. "Hey, he has the same bumper sticker and fast food wrappers in the front seat..."

Re:Yes,

[N0Man74]

Yes, in the future, when 3D printers improve by leaps and bounds and when the Music and Movie industries have won and it will become illegal to hum copyrighted works in the elevator, we will see Public Service Advertisements that say...

"You wouldn't steal a song would you!? Don't steal that car! Downloading a car is illegal!"

Re:Yes,

[forkfail]

What happens if the app store decides to disable [electronista.com] your car, though?

bluetooth dongles on OBD-II

[nazsco]

always wondered. you can pretty much drive by some OBD-II ports... bmw can be started even by my old obd-I.

and lots of people buy those bluetooth dongles just so they can have an extra tachometer on their iphones on the dash.

may not be so usefull for stealing the car... as i doubt it has power when the car is off... but may very well be the case, i don't know. But imagine sending the acelerate signal on the highway to everyone around you that has such device

what will they do with stolen cars?

[alen]

one of the reasons auto theft declined is police busted and closed chop shops that took and resold the parts. and you can now buy cheap off brand parts for any car as well. not like anyone stole cars back in the day for personal use

Re:

[Anonymous Coward]

Joyriding must be a foreign concept to you then...

Re:what will they do with stolen cars?

[Anonymous Coward]

Joyriding isn't stealing. At least not in the UK. Theft (aka stealing) requires an intention to permanently deprive, which joyriding lacks. Joyriding is why the offence of taking without consent (aka TWOCing) was introduced.

Re:what will they do with stolen cars?

[hedwards]

That's one, but around here it's increasingly common for cars to be stolen and then returned hours later after having completed a drug run in the stolen vehicle.

Beyond that bait cars and lojacks as well as other countermeasures make it a lot more likely that car thieves will be caught before they can profit from their crime.

Re:what will they do with stolen cars?

[Shakrai]

That's one, but around here it's increasingly common for cars to be stolen and then returned hours later after having completed a drug run in the stolen vehicle.

The last time I parked my car in a New York City dirt lot it was returned to me with 30 extra miles on odometer. It was also washed, detailed and had a full tank of gas. I don't want to think about what they did with my car but at least they were polite about it....

Re:

[scharkalvin]

That reminds me of an episode of the "Top Cat" cartoon where the guys made money parking cars and renting them out for the day.

Re:what will they do with stolen cars?

[AlienSexist]

My understanding is that there is a very hot market for stolen whole cars in Asia, Mexico, and Central & South America. Driven across the border to Mexico for further distribution, sometimes by ship. Pickup trucks in particular are being taken for this purpose. You're right though. Most often cars are not stolen, only broken into for their contents or disassembled for valuable parts. Catalytic converter thefts have been very high because they contain various mixtures of platinum, palladium, rhodium and prices for those precious metals were very high. Just like there's been a huge rash in national copper thefts.

Re:

[cayenne8]

. Catalytic converter thefts have been very high because they contain various mixtures of platinum, palladium, rhodium and prices for those precious metals were very high.

Hmm...now, I'd not have a problem with them taking my catalytic converter off the car (leave me the car)...with less air restriction, I'd likely have more performance!!

And, not like I live where they do sniff tests on inspections....I've never lived where they do that..sounds like a PITA.

Re:

[CyberTech]

. Catalytic converter thefts have been very high because they contain various mixtures of platinum, palladium, rhodium and prices for those precious metals were very high.

Hmm...now, I'd not have a problem with them taking my catalytic converter off the car (leave me the car)...with less air restriction, I'd likely have more performance!!

And, not like I live where they do sniff tests on inspections....I've never lived where they do that..sounds like a PITA.

If your car is like mine was, they wouldn't need to do sniff tests. They'd hear you coming. My catalytic converter was cut out of my 4Runner while in the parking lot at work. I left work at around 4pm, started it up, and nearly shit a brick. It was the loudest vehicle I'd ever heard, I thought it was broken, lol!

Brought a friend out to listen while i started it, he's peering around, and says... "wtf, where's your cc?" Just a pile of metal shavings :)

Re:

[cayenne8]

If your car is like mine was, they wouldn't need to do sniff tests. They'd hear you coming. My catalytic converter was cut out of my 4Runner while in the parking lot at work. I left work at around 4pm, started it up, and nearly shit a brick. It was the loudest vehicle I'd ever heard, I thought it was broken, lol!

Well, I guess I was thinking ahead...and just figuring to weld in a straight pipe in its place.

I guess a larger question of mine is..how do they manage to do this in public? I mean...someone in a

Re:what will they do with stolen cars?

[johnny cashed]

4runner is a truck, no need for a jack. They make pipe cutters with multiple wheels on a chain and a vise-grip like handle. It allows for plumbers to do repairs in tight spaces. Quiet, quick. Or just turn up your stereo while your buddy uses a cordless sawzall (TM).

Re:

[CyberTech]

Correct. They used a cordless tool to do it. There is video.. the only car that parked next to the truck all day only stopped for 90 seconds. That's all the time it took :)

Re:

[clm1970]

Yep. I had an older but still running Toyota pickup. I sold it to a couple of guys who were taking it to Guatemala. Make them come to the bank first so they could certify the bills were not fake as they insisted on paying in cash. DA's office said no known scam going around like that but it was a little freaky to say the least.

Re:what will they do with stolen cars?

[Anonymous Coward]

Here in Texas, car theft is up because there is one type of vehicle highly sought after: Larger pickups, SUVs, and 4x4s in general. These are promptly taken to the border to smash through the excuse of a fence and to ferry weapons to Mexico, and narcotics/illegals back to the US. A good diesel 4x4 is prized down there because it can easily outrun police vehicles over the terrain. They also are taken to Mexico to be up-armored.

The trick I do with keeping the vehicle from being "borrowed" is the classic kill switch. However, I use two. One is for the fuel pump, the other one turns on and off the RFID antenna. This way, someone trying to clone a PATS key might get my key's serial number, but when they try to jam a clone in the vehicle, it will just give them the middle finger.

Re:what will they do with stolen cars?

[GameboyRMH]

There's a truck in Texas with a kill switch, oh noes!

Re:what will they do with stolen cars?

[Mashiki]

Here in Canada, auto theft is roughly the same. Most cars aren't chopped and sold. Anything from '09-99, they're devinned, and resold with a remarked vin from a wreck. Strip-vinning has long since gone out of style because it's a hassle, every part on cars made in the last 5 years or so has the VIN on it. From the windows, and bumpers, to the air and A/C compressor, down to the taillamp and wiring harness. So it did it's job. Their favorite targets are mostly cars/trucks/suv's in the '02-08 range where VINs were only stamped on engine/body frames. And where salvages are easy to find. So fair warning, see a deal, get it checked. And double check that dash VIN against the body, frame and engine. Otherwise, your vehicle is forfeit nearly everywhere to the owner, and you're out your money.

The new thing is to simply either pull up and drive away with the vehicle using a stolen tow, or they pay a tow driver on the side to dump a vehicle somewhere. And then strip out the computer and replace it with a new one along with a new keyset. These are then sold overseas, mostly in russia, china and the middle east.

why is the CD player on the same network?

[Trepidity]

It's not clear to me why the CD player should even be on the same network as the engine-related microcontrollers.

Re:why is the CD player on the same network?

[Anonymous Coward]

Sometimes the electronics to control certain parts of the car are in the stereo to keep you from upgrading the stereo. Ford, for example, uses strange oval shapes to keep you from replacing their crappy stereo. Chevrolet in the case of my old Monte Carlo put the door chime and some of the interior light controls in the stereo. The work-around Best Buy did in my car was to move the original stereo to the glove compartment and leave it connected to everything but the speakers. In my wife's Lexus, the car wouldn't even start without the radio. I gave-up on upgrade the stereo in it. Car makers these days go to great lengths to make sure you do not get good sound in your car and buy any upgrades from them.

Re:why is the CD player on the same network?

[Anonymous Coward]

You have a great point about Chevrolet. I install stereos for a living, and Corvettes have some very creative protections against replacing the stereos. GM really wants you to have to suffer with the absolutely horrible Bose stock stereo. GM uses non-standard line out voltages in the Corvette so you can't connect the head unit to a real amplifier. Also, they place the amplifiers in the door which doesn't leave you with enough room to put even a tiny Alpine amp in the door even if you ignore the air flow problems. A real amp will fit under the seat but only if you have one of the few Vettes without power seats. In addition they use proprietary thin woofers in the doors which, of course due to physics, sound horrible. The speakers are a weird and complicated size so you have to fabricate mounting brackets. Also the speakers are a nonstandard impedance so you can't drive them with a standard car amp. Even with all of that work, GM decides to take the door and key chimes away from you if you replace the headunit.

What all of that means is if you want to upgrade or repair any single component, you must replace the entire system.

Re:

[h4rr4r]

It's a vette, why does it even have a stereo?

Re:why is the CD player on the same network?

[garyebickford]

To entertain the arm candy.

Re:

[Anonymous Coward]

To give you something to listen to when you're waiting for the tow truck.

Re:why is the CD player on the same network?

[Lumpy]

Really? I seem to find it different.

Just helped a friend with his 2010 Vette 2 months ago, dingy thingy replacements are available at scosche for less than $25.00 so all your chimes are retained. Steering wheel controls are also easily adapted with a $79.00 box.

speaker upgrades are worthless as the Vette with premium sound that has the amps on the backs of the speakers sound better than any of the aftermarket stuff, speaker placement in the vette is crap anyways, $300 each drivers will not sound any better in that car, but it's easy to do with adapter plates from..... Scosche, that place again.

as for a "real amp" almost nobody puts in a 10,000 watt Rockford Phosgate anymore. replace the head unit with the new kenwood stanav one, hooked into the existing wiring for the speakers and simply removed the speakers and disconnected the "premium sound" amps.

All done. Anyone that has done car stereos in the past 2 years knows this, you dont have to " replace the entire system" not by a long shot.

Re:why is the CD player on the same network?

[BitZtream]

Wow, you are one of the worst 'stereo installers' I have ever fucking met.

You do realize there is an interface kit for every GM vehicle on the planet that will make it 'normal' or 'industry standard', right? Give you standard line outs, standard speaker outs, will still make sure that you get all your interface sounds piped through your speakers like door chimes and warning bells, blinker clicks, ect ...

Whats great is you're talking about them using weird speakers shapes in places where ... NORMAL SHAPES WON'T FIT.

What all of this means is that you don't actually know what you're talking about.

GM only has 2 or 3 interface busses for the dash electronics in their cars and there are interfaces for all of them. Get a clue about your job.

Re:

[kimvette]

Every marque with the BOSE system will have the same problem for line-out voltage and impedance issues. For those systems all you need is a line-out converter.

Amplifier installation? Unless you're installing a monstrous amp, installing an amplifier in a Corvette is simple.

Speaker installs? Okay, slightly more difficult, but no more difficult than any other sportscar.

System sounds? Not a problem - multiple solutions exist for that. Just be glad the head unit in that car doesn't act as the hub for the CAN bus

Re:why is the CD player on the same network?

[BitZtream]

They aren't 'put in the stereo to intentionally make it harder' as you imply, but when you disconnect the stereo's internal bus, you do fuck up a portion of the cars' network.

GM really doesn't give a fuck if you put in a different stereo after you bought the car ... YOU ALREADY PAID FOR THE STEREO IN THE CAR.

Replacing the stereo is also rather trivial, you just need an interface kit that will interface your stereo with the cars data bus. These interface kits are well known (Best buy sells the damn things) and fit pretty much any car on the planet and make it work with any kind of stereo from old school analog systems to fully modernized systems with blutooth phone audio relays and text output to the display.

Its not the car makers that don't know what they are doing in your case, its you and best buy.

Re:

[Ouchie]

The reason why the Car Stereo is on the same network is because too many people were buying cars with no stereo or the basic stereo then going to after market shops where they could get a much better stereo for the same amount of money. Manufacturers decided that to reduce this they would just make the car stereo a required part for the whole system to work. It gives you a good reason to pay $1200 for the stereo upgrade which we know isn't worth $600.

Re:why is the CD player on the same network?

[Lumpy]

nope.

It's on the bus to listen for vehicle speed so the active volume can go up and down. Advanced one spit out channel and RDS data for the HUD. there is zero possibility to send out a "lock up the breaks" command from the car stereo into the CANBUS unless you rewrite the stereo's firmware first. and that is not gonna happen, There are a LOT of guys looking to hack GM and Ford satnav systems to get past the damn CANBUS VIN lock. They have had ZERO success in the past 5 years.

Re:

[godel_56]

The reason why the Car Stereo is on the same network is because too many people were buying cars with no stereo or the basic stereo then going to after market shops where they could get a much better stereo for the same amount of money. Manufacturers decided that to reduce this they would just make the car stereo a required part for the whole system to work. It gives you a good reason to pay $1200 for the stereo upgrade which we know isn't worth $600.

Similar to printer manufacturers and ink jet cartridges.

Re:

[tehcyder]

Yay! Another computer analogy for cars. I love this thread, it's messing with some of the basic tenets of reality.

Re:

[PseudonymousBraveguy]

Well, it is usually on a different (layer 2) network, but usually there is a gateway routing messages between the two. Why? Because the CD player is embedded in the entertainment system, and that system displays information from the engine (e.g. current mileage), or you may be able to configure your engine via the entertainment system (like switching your engine and gearbox to "sport" mode). However, the gateway does not blindy route any message to any network, there is usually a fixed configuration which m

Re:

[DarkOx]

Because that is how they implement the "Music gets louder, when the engine is turning more revs and making noise" feature.

Consumers want wizbang features like stereo's that auto adjust volume, they don't care about security. They might not even really care about safety. Oh they'll demand safety "features" like 60 different airbags, but the idea that a software bug or interconnect problem introduced as a result of the needless complexity in some vehicles could cause their breaks to malfunction just is not

Re:

[Fahrvergnuugen]

Because the CD player connects to the steering wheel controls which connects to the ECU to set cruise control for your drive by wire throttle plate.

Re:

[AJH16]

Ironically, to try and keep your stereo from being stolen. Good stereos used to be stolen a lot so they started tieing them to the VIN which is supplied by the ECM. Unfortunately, they have now started figuring out ways to use that connection to hack in to the ECM. Oops..!

Re:why is the CD player on the same network?

[427_ci_505]

Depends on the car. The Corvette, for example, has three variants on the engine, each variant costing a different amount of money.

Re:

[tompaulco]

adjust volume to compensate for engine noise
But this introduces an unnecessary step and an assumption. The system guesses how loud the road noise is by using the current engine RPM. Then the radio system gets loader based on that guess.
Instead, they could completely isolate the stereo from the rest of the vehicles systems, and use a microphone to MEASURE the ambient noise and raise the volume by the precise amount necessary. I had a car stereo that did this in 1989. There is no reason in this day and age

Re:

[Archangel Michael]

OR

Better yet, use the Microphone to pick up the Ambient noise, and generate a counter wave / noise cancellation in the stereo output to create a sound proof bubble around the cabin, making the ride even quieter than naturally occurring.

yo.

[grub]

So the other day I was on the bus and I saw this hot woman driving a car. I pulled out the iPhone, SSH'd into home and ran nmap on her license plate.

LOL, stupid woman didn't notice her gas cap was left off from the last fill but nmap caught it. Used nc to push 'fire.jpg' into her tank and she blew up.

True story, fucker.

Re:

[antdude]

Why would you want to blow up a hot woman? :(

Re:

[SleazyRidr]

Seriously, wtf is grub on?

Car security has been plummeting for ages

[Riceballsan]

In many many ways we've been opening more security holes in our cars as time progressed, the wireless unlockers. Even if we pretend that wireless isn't heaven to sniff and spoof. People leave their keys out in all sorts of public places, not everyone locks them up at the gym, most people leave them unattended at a waterpark or beach etc... before wireless that was reasonable, no-one is going to steal my keys because there are 500 cars in the parking lot, nobody can try each one. now with wireless, if you steal someones keys, you can just walk around the lot and push a button to make it beep and find out where the car is.

Re:

[drinkypoo]

Yeah, this is what I came here to comment on... you can go to dealextreme and buy a couple of unlocking tools, and anyone can get it. Probably not too much harder to find more contemporary tools.

Re:

[AJH16]

I never understood why they don't implement more secure wireless keyfobs, or maybe some do. It is easy to make it so wireless isn't heaven to sniff and spoof. Simply make a time driven rotating key based on a shared AES key. Make the lock and unlock code different and you effectively have a secure, spoof proof system. When I get out of my car, I only transmit lock so you can't unlock even during the available window that the code is good for. Similarly, when I return to my car, I'm in it for the period

Wrong demographic

[prichardson]

I seriously doubt this will have much effect on car thievery. A jimmy and hotwiring are things pretty much anyone can do. On the other hand, hacking a car's PC is not a skill generally held by people who have an actual desire to steal cars. I expect a few very expensive cars will be stolen via high-tech means, but I wouldn't expect this to cause a noticeable change on cat theft rates for non luxury cars.

Re:Wrong demographic

[DMUTPeregrine]

I think you're (somewhat) wrong. Initially it won't mean much, but just like pre-packaged malware suites for credit card fraud (ZeuS being the biggest example) point-and-drool interfaces for car theft will be made eventually.

Re:

[427_ci_505]

Even non luxury cars come with things like bluetooth nowadays. The attack vectors are present.

Re:

[Lumpy]

no it's not.

there is ZERO connection from the BT to the car's operational CANBUS.

Re:

[gl4ss]

no it's not.

there is ZERO connection from the BT to the car's operational CANBUS.

when the entertainment unit is made integral part of the onboard computer systems then uh.. yeah, there is direct connection. why would a car company do that? well, two reasons: to make it more of a bitch to go with aftermarket 40 bucks radios so you'll have to buy their most expensive in car entertainment package when you buy the car and the second reason is simply cutting costs and reducing the number of cpu's on the car.

Re:

[Lumpy]

Says the man that knows NOTHING about car electronics.

CANBUS is a series of messages. you cant send "start the car" into bluetooth and have it seen on the CANBUS as a valid message as it will be wrapped in a "audio system" preamble and container.

come back when you have a clue as to what you are talking about.

Re:

[prichardson]

I'm not saying that the attack vector isn't present, I'm just saying it's not worth it. Someone with the skills to steal a car that way isn't going to bother to make $5000 (at most) selling a stolen car for parts when they could make that in a week at a legitimate job (that they can get with the skills required to steal said car in said fashion).

Now, stealing a crazy-expensive car is another matter entirely.

Re:

[harl]

You're missing the point.

They don't have to. Does every criminal have to take apart a car door and figure out how to make a slim jim before they can start stealing cars?

One group will discover an exploit and make tools to automate the process. They will then spread them so people without skills to discover the exploit can exploit the exploit.

I don't have the skills to break DVD encryption but I can get the tools to do it in 5 minutes.

Re:

[heckler95]

The first guy to hack a car's PC needs to be skilled. Turn that into a black-market android app and all of a sudden the middle-school dropout who had trouble learning how to jimmy or hotwire can steal a car with the swipe of a touchscreen. It's just a matter of time.

Re:

[CanHasDIY]

Ignoring, for a moment, that most-if-not-all automotive computer systems are proprietary and thus will vary from manufacturer to manufacturer, I think it's more an issue of funding. If cars cost what computers do, this issue would have come to a head years ago.

Considering cost, it seems to me that hacking of automobile computer systems will, for now, be the exclusive domain of researcher organizations and vast criminal empires... to that end, imagine the havoc that could be wrought if, say, the Zeta's got

Re:

[Jeng]

to that end, imagine the havoc that could be wrought if, say, the Zeta's got a hold of one of ICE's Suburbans and managed to reverse engineer it's systems

All though it would be handy for the Zeta's to be able to disable the ignition at will of an ICE Suburban, I think the greater threat would just be the Zeta's using a system to see where radio transmission are coming from.

If ICE never sees the Zeta's then ICE will probably never know that the Zeta's have the capability, but if you knock out the ICE's vehicles they will react to that immediately and make sure that vector no longer works.

Best defense, no be there.

Re:Wrong demographic

[phoenix321]

Remember Stuxnet.

Covert assasination anyone?

Implant a well-disguised piece of trojan code inside an ECU of opportunity.

Have it triggered at a specific speed, at local nighttime. Disable brakes, lights, airbags and stomp on the accelerator. If any crash is detected, quickly recover the firmware to an original, untampered backup that was stored away somewhere beforehand.

Crash investigators will find nothing but "reckless speeding" to be the cause.

Re:

[lucifuge31337]

Well, COULD do... back in the 80's. Starting a car by touching the right two wires in the igition harness ended around 1989 with the last of the carbureted cars. (I'm told that was a Subaru Justy.) A carbureted car could be started that way. Cars with electronic ignitions have more wires. And modern ones have anti-theft devices.

God dammit I hate when people on /. talk about cars. You are just one of the many who are so wrong you are even embarrassing ME .

Re:

[tomhudson]

... which is why you used a dent puller (or a big screwdriver and a hammer) to just remove the key barrel and insert a screwdriver, and turn the switch on.

Or if you had the misfortune of driving certain Chryslers, the pin at the bottom of the barrel that turns the contact pad would snap off in normal use, and you could just remove the whole barrel by hand, no tools required (happened to me at a gas station - I filled up, went to turn the ignition on, and it spun around and around and around with no effect

Re:

[GameboyRMH]

Wrong, most EFI cars can be started the same way, there's nothing about EFI itself that makes it different.

I don't quite get it

[kav2k]

We need a car analogy here.

Re:

[DarkOx]

Sure its like if you had a car and left in a parking lot. Now suppose this car of yours had wireless unlock that did not use strong encryption, or any kinds of DH mutual authentication, rolling code, or time based scheme. Then suppose some guy with some relative simply radio equipment waited for you to unlock it. He can could then use a simply replay attack to unlock it and steal any shit you had in there.

Does that help.

IF they are in the car....

[Lumpy]

They already own the car.

Dont worry about a thief stealing the car by using the CD player. All of these articles are pure FUD. they cant do a "Shadowrun" style unlock and start from standing outside the car and using their Uber haxor toolkit.

Ghost Dog

[Massacrifice]

They have a movie about his. If you havent seen it, rent/download Ghost Dog : The way of the samurai. One of my best. Main guy steals Lexus with electro device he built himself.

http://www.imdb.com/title/tt0165798/ [imdb.com]

Re:

[Massacrifice]

Stick with Armageddon, then.

brakes.sys has caused a system error

[Joe_Dragon]

To reboot the car trun key to off (soft switch)

If that does not work open hood and unhook battery

Re:

[TubeSteak]

If that does not work open hood and unhook battery

Then drive to the dealership so they can reset your stereo/satnav

just what we need more tech to lock to dealer

[Joe_Dragon]

Get ready to say good buy to any non dealer car repair place. And if they want to be real dicks about dealer oil changes at 3000 miles.

Old Skool solution

[El_Oscuro]

After my father's 1963 Chevy was stolen, he installed a car kill switch kit [amazon.com]. You can get them for modern cars too. Since you put the switch where ever you want, it would take a thief time to find it, and they won't be bothered. You can sometimes get a lower insurance rate too.

Re:

[jackbird]

Ah, yes, the joy of puzzled phone calls from mechanics who you forgot to tell (or who didn't remember) that the car won't start without the rear defroster turned on.

Re:Windows PC?

[kiwimate]

It's a stupid flamebait analogy. The summary goes like this

* Windows PCs are as secure as a piece of tissue paper (LOL, for teh win!)
* Cars with their increasingly computerized systems are now becoming vulnerable to hacking.
* Windows PCs are vulnerable to hacking.

Re:Windows PC?

[SQLGuru]

The concept is that electronicly secured cars become wide-spread and common. It was why Windows PCs were attacked with viruses first. Now that Mac is more common, you see more attacks against them. It's why you see malicious Android apps. Soon, you'll start seeing malicious car apps......

It's all about wide spread opportunity. You need a lower percentage of successful attacks as the number of targets increases.

Re:

[Anonymous Coward]

We had car analogies for computers, now we have computer analogies for cars.

Re:

[garyebickford]

IIRC Ford at least has a cooperative agreement with Microsoft and has shown cars with (among other things) automatic updating of your music into your car, so yes it might well be running some form of Windows. The increasingly prevalent and probably I-fear-soon-to-be-required OnStar or equivalent is basically a cellular modem connection, which can do almost everything to the car but steer.

And the average car has had more computing power than most desktop PCs for ten years or so. I read somewhere several ye

Re:

[grcumb]

What a stupid fucking statement about Windows PC. What is that even supposed to mean? How is a modern car comparable to a computer running Windows? What version of Windows are we talking about here?

Funny you should ask [imagicity.com]....

Dude, this is Slashdot. No car post is complete without a Windows analogy.

Re:

[alen]

wonder if it has active directory connectivity? that would be so cool to add my car to the company's AD forest

Re:

[Capt.DrumkenBum]

Do that and when you leave the company, suddenly you can't start your car. :)

Re:

[DarkOx]

Sounds nice that way HR can tell you IT department they have to enforce the GPO that does not let anyone go over 65MPH.

Can't wait.

Re:

[hedwards]

Which is why police love lojacks, often times they not only get the car back, but they catch the thief red handed.

Re:

[k6mfw]

Lo-Jack freq is 173.075 if you want to DF one of these guys.

Re:

[GameboyRMH]

The only anti-theft system I'd consider putting on a car is a DIY lojack. Basically like a smartphone you can reverse-SSH into and get the GPS coordinates from, and provide a web interface for law enforcement if the car is stolen. The only downside is that your full travel history could be pulled up by the telco...I can't think of a simple way to detect if the car is started by hot-wiring. But any car I own will be either not worth stealing or too strange and complex to steal.

Re:Sometimes hi-tech is not the best solution....

[CanHasDIY]

Well, here is the same, but in our case if a theft ring wants your car they just show up with a .22 on your window...

You must not live in a right-to-carry state, if thieves are carjacking folks with pea-shooters...

'Round these parts, that's the fastest way to get your ass blown off by someone with a real gun.

Re:

[istartedi]

On the Internet, nobody knows you're not a badass with a .44 at the ready under the driver's seat. (suppressed laughter). Yes we do. (open laughter).

Re:

[betterunixthanunix]

If you do not think a .22 is a worthy gun, then why not come down to the range and hold up my targets while I shoot mine?

A .22 is plenty deadly, and I would not bet my life on rimfire cartridges not being less reliable than centerfire. If someone already has a gun pointed at you from a foot away, you are not going to get your gun out of the holster before they shoot you, and that is regardless of what caliber they are packing.

Re:

[Whorhay]

I'd agree that going for a gun when someone already has one directed at you is silly. But that doesn't mean you can't fight back very effectively, especially if they are within arms reach.

Somewhere I saw a video of a guy disarming an armed assailant. From the time he decided to disarm the guy it took 12 thousandths of a second for him to do it. I'd like to see what percentage of street thugs have a reaction speed quicker than that. People can move very quickly when motivated, even an overweight person with

Re:

[Lashat]

The reason this has not happened sooner is that remote start and auto-unlock are not the only features of OnStar. Key-fob/rfid cloning exists and is not prohibitively difficult. Remote engine kill makes initial get-away more difficult outside of a very small window of time. While vehicle tracking can find the vehicle after it has disappeared from the owners line of sight. Plus, exposes the chop shop location to the authorities.

Until it is possible to cheaply, easily, and quickly block/disable both GPS

Re:

[CanHasDIY]

The reason this has not happened sooner is that remote start and auto-unlock are not the only features of OnStar. Key-fob/rfid cloning exists and is not prohibitively difficult. Remote engine kill makes initial get-away more difficult outside of a very small window of time. While vehicle tracking can find the vehicle after it has disappeared from the owners line of sight. Plus, exposes the chop shop location to the authorities.

Disagree; On-Star's remote capabilities are easily circumvented in most vehicles by removing the relay that powers the CMDA modem. Also taking into consideration that On-Star is a GM-specific product, and GM is not the sole auto maker in the world, the concept that their tracking capabilities are the main reason car theft is in decline is dubious at best.

Personally, I would more likely attribute the decline to a deepening cost vs benefit ratio; a lot of folks have no compunction about breaking a $300-400 c

Re:

[Cramer]

OnStar is a GM brand. I'm told the Toyota/Lexus Enform/Safety-Connect system is run by OnStar. (on verizon's network.)

If you're going to boost a car thusly equiped, you'd be wise to remove or disable the thing FIRST. When manufacturers get wise and link the module into the anti-theft logic -- meaning the car won't work without it -- simply disable the radio/antenna. Not being able to start your car because it cannot see T-Mobile's network (for example) would never be accepted by customers.

Re:

[CanHasDIY]

OnStar is a GM brand. I'm told the Toyota/Lexus Enform/Safety-Connect system is run by OnStar. (on verizon's network.)

Duly noted.

If you're going to boost a car thusly equiped, you'd be wise to remove or disable the thing FIRST. When manufacturers get wise and link the module into the anti-theft logic -- meaning the car won't work without it -- simply disable the radio/antenna.

For the record (and the benefit of my fellow paranoids), you can actually request this equipment be disabled for you by the dealer prior to purchase, or by the owner if they know where to look. Of course, this is a moot point for those who actually intend to pay for and use the service, but personally I would never subscribe to a service that can arbitrarily disable my vehicle without my permission... among other, [consumeraffairs.com] privacy related issues. [zdziarski.com]

Not being able to start your car because it cannot see T-Mobile's network (for example) would never be accepted by customers.

Yea... I remember saying something similar when GPS devices

Re:

[Lashat]

I guess that our definition of "easy" is different. Most OnStar boxes that I have seen reside behind truck/cargo area panels. These require a decent amount of effort to remove or even destroy to rip out. Once you have access to the box then you can just pull out the antenna or cut the modem wire.

However, this does NOT disable the GPS tracking ability.

Easy to me would be a portable and concelable jammer of cell and GPS signals.

The key to most successful auto-theft is to look like the owner getting into th

Re:

[CanHasDIY]

I guess that our definition of "easy" is different. Most OnStar boxes that I have seen reside behind truck/cargo area panels. These require a decent amount of effort to remove or even destroy to rip out. Once you have access to the box then you can just pull out the antenna or cut the modem wire.

However, this does NOT disable the GPS tracking ability.

Much easier to just remove the relays which power the On-Star/GPS devices, which are often housed on an easily accessed panel under the hood or dashboard. Instructions for disabling the aforementioned systems are prolific on the 'nets, or you could just ask your friendly neighborhood auto tech to disable them for you.

Fortunately, we don't (yet, hopefully) live in a world where the secret government places hidden trackers/disablers in every car sold in the country.

Easy to me would be a portable and concelable jammer of cell and GPS signals.

Except that you might as well stick a bi

Car theft via towing

[Firethorn]

Another thing about towing - people might assume the car is being repossessed. The 'not very common' thing might not be common, but it's a fairly well known method, as you don't have to break jack to do it. More appropriate when it comes to top end vehicles.

Personally, I'm tempted to install a hidden kill-switch.

Re:

[c0lo]

Seems like the obvious next step in vehicle security is to be more pro-active in the defenses, i.e., reliance on tracking systems to show where the car is, built-in webcam to take pictures of people approaching and occupying the car (yeah, he can wear a mask, but that makes him obvious to onlookers), etc. Your car should be pretty safe if, in addtion to jimmying the doorlock (by electronic means or otherwise), the thief needs to disassemble the engine block and pull out the module that is transmitting the car's GPS coordinates. Hard to do casually in an open area.

Doh... MS Security Essentials - it's free. ;)

Re:

[c0lo]

I always wondered about the legality of installing a pepper spray car alarm system. Is it considered a bobby trap?

No, it's a boobs trap.

Re:

[c0lo]

Nope... but Lord (and Janis) willing, you might have a Mercedes.