Two hackers have found a way to unlock cars that use remote control and telemetry systems like BMW Assist, GM OnStar, Ford Sync, and Hyundai Blue Link. These systems communicate with the automaker’s remote servers via standard mobile networks like GSM and CDMA. With a clever bit of reverse engineering, the hackers were able to pose as these servers and communicate directly with a car’s on-board computer via “war texting” — a riff on “war driving,” the act of finding open wireless networks. The hackers were both employees of iSEC Partners and revealed their findings in a conference in Las Vegas.
However, they won’t reveal the details of how they succeeded until after the affected companies are given time to change and fix their systems. The problem is that even if they do, the hackers were able to break into the systems in a matter of hours and it’s likely that others can still succeed even with a changed or more sophisticated system.