Hackers Stole A £60,000 BMW

Doing little more than holding a bag up to the front door of a house a thief can steal a BMW.

Days after a Mercedes was said to have been taken in a similar way, a £60,000 BMW X5 vanished from its owners’ drive as they slept. The thieves were caught on CCTV using some sort of transmitting device inside the bag which is thought to extend the signal from the car’s keyless fob which was inside the house. 

How does the Technique Work?

Criminals stand near houses with a device that picks up the signal of the car key and relays it to an accomplice standing near the car with another transmitter, which unlocks and starts the vehicle.Drivers have been advised to take precautions such as turning off the fob’s radio signal, achieved on Mercedes cars by clicking it twice, or storing it in a metal-lined container.   

The car uses a keyless start system meaning it can be unlocked simply by having the fob close by. Both vehicles were stolen in Essex, prompting fears a gang is targeting new ‘keyless’ cars with high resale values.

Security expert Ray Anderson, whose firm covers Essex, said it was the fourth such theft he had heard of in the last four months. He warned the only way to protect against it may be to keep key fobs inside a metal box. There has also been advice to keep them in the fridge.
‘The metal blocks the signal,’ said Mr Anderson, of Classic Security Solutions. ‘We think these keyless fobs continually emit a signal. You can turn them off but most people don’t.
‘We think, from analysing CCTV, [the thieves] are using a device to extend the signal which makes it appear the fob is closer than it is.
‘Nothing special is required to use it. This whole thing was over in five minutes and there is not much chance of them getting it back.’

The owners were asleep when the car was stolen from their driveway at around 2am on April 4. They only realised it had gone the next morning. They did not want to be identified but have released the CCTV footage from their security cameras to warn others.

They said: ‘We are extremely concerned our BMW could be stolen in this way. We see this as a significant security breach.’ In the CCTV, two men can be seen sprinting towards the house. One goes to the car door while the other, holding a bag, stands by the front door of the house.

One of the men can then be seen moving the bag around outside the front door, apparently trying to detect a signal. Moments later, the car lights come on and the two men are inside and away. CCTV also showed the £35,000 Mercedes C220 being taken from a driveway in Grays on April 11. In this case the thieves went through a similar routine, with one man waving a bag near the wall of the house.

The car owners said the fob was stored at the back of their home, far from the drive. 

But they believe the thieves managed to hack it and extend its reach. Keyless vehicles do not have traditional ignition keys, instead coming with a plastic fob that contains a computer chip and security code.
When the fob is nearby, the code is detected by the car’s computer, allowing the driver to start the engine at the press of a button.

It is thought that thieves could be using a ‘relay’ strategy with a pair of radio transmitters. One gets as close as possible to the key fob inside the house by holding a transmitter close to the wall. The second holds his device by the car door. The devices relay a signal to unlock the vehicle.
Mercedes said it was not aware of any thefts relating to keyless start systems and said all its vehicles had extensive security systems.

A BMW spokesman said it was hard to tell from looking at stills of the theft how the car was stolen. He added: ‘This form of theft would appear to be extremely rare.’

An Essex police spokesman said: ‘We take car theft seriously and use a range of tactics to detect this.’ 

DailMail:

You Might Also Read:

Hackers Could Turn Off Your Car Engine – While You Are Driving:

Older Cars Can Connect To Modern Smartphones:

Twelve Things To Know About Self Driving Cars:

 

 

« NATO Cyber War Games 2017: Czechs Win
Cybersecurity Has A Metrics Problem »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

MIIS Cyber Initiative

MIIS Cyber Initiative

The Cyber Initiative's mission is to assess the impact of the information age on security, peace and communications.

Ponemon Institute

Ponemon Institute

Ponemon Institute conducts independent research on data protection and emerging information technologies.

Anitian

Anitian

The Anitian Compliance Automation platform builds, configures, and monitors cloud environments to accelerate compliance for standards such as FedRAMP, PCI, ISO/GDPR and CJIS.

American Cybersecurity Institute

American Cybersecurity Institute

American cybersecurity Institute is a newly formed not-for-profit organization dedicated to education, advocacy, study and analysis in the space of cybersecurity law and policy.

Green House Data

Green House Data

Green House Data is a managed services provider delivering hybrid solutions to enterprises who need secure IT environments and efficient management of their critical applications and business data.

Meterian

Meterian

The Meterian Platform is a fuss-free solution to protect you against vulnerabilities in your app’s software supply chain.

BridgingMinds Network

BridgingMinds Network

BridgingMinds Network is an industry leading best practices and IT security training provider in Singapore.

Xscale Accelerator

Xscale Accelerator

Xscale's vision is to create world-class startups out of India by transforming sales and providing access to global markets.

SecOps Group

SecOps Group

SecOps Group is a boutique cybersecurity consultancy helping enterprises identify & eliminate security risks on a continuous basis.

UK Cyber Cluster Collaboration (UKC3)

UK Cyber Cluster Collaboration (UKC3)

UKC3 has been launched to support Cyber Clusters and encourage greater collaboration across regions and nations of the UK.

Project Cypher

Project Cypher

Project Cypher leverages the latest cybersecurity developments, a world class team of hackers and constant R&D to provide you with unparalleled cybersecurity offerings.

Jot Digital

Jot Digital

Jot Digital is a full-service technology company specializing in digital engineering, application modernization and business transformation.

WBM Technologies

WBM Technologies

WBM Technologies is a Western Canadian leader in the provision of outcomes-driven information technology solutions.

DNSFilter

DNSFilter

DNSFilter is the most accurate threat detection and content filtering tool on the market today.

Quotient

Quotient

Quotient builds digital experiences that empower and inspire the American people by understanding their needs, simplifying complex technical solutions and adapting to how they work, live and learn.

Interlynk

Interlynk

Interlynk's #SBOM and # VEX-powered platform automates and continuously monitors first-party and vendor software supply chains and helps meet #FDA, #CRA, #GSA, and #DoD compliance obligations.

ViCyber

ViCyber

ViCyber is an Australian based company whose mission is to simplify and strengthen cybersecurity for all businesses, irrespective of size.