Seeing hackers struggle with sound gives me a certain level of satisfaction. Not gonna lie
@maxczapski22395 жыл бұрын
It's a Defcon all-time classic!
@jakethejeweler30925 жыл бұрын
😂😂😂 I was hoping they were going ask the crowd
@dashdashdash_4 жыл бұрын
@@jakethejeweler3092 My favorite bit is watching programmers squabble over where to go in the sound manager and what to do.
@KTMsteve4 жыл бұрын
Jmaxx walks up with low energy and expects high energy response from crowd lol
@artby2wenty4 жыл бұрын
Deafcon
@pav4315 жыл бұрын
When will companies learn that "Security through Obscurity" is a broken concept that's been overcome by the widespread of technology availability?
@MaxBrix5 жыл бұрын
instead of locking my house I painted the door the same color as the walls.
@pav4315 жыл бұрын
@@MaxBrix I thought of a similar analogy, only: Why should I lock the backdoor to my house? People should only go in by the front. Its still a door, and people aiming to break into your house will look around it when finding its weaknesses.
@barongerhardt5 жыл бұрын
@@pav431 Given how easy it is to overcome any standard house door lock, or breaking a window, I wouldn't worry too much about locking them.
@Lucy-dk5cz5 жыл бұрын
More specifically security purely through obscurity is broken. Obscurity as a whole does have a place in increasing the skillset and resources needed to beat the security.
@namAehT5 жыл бұрын
I think it's a good supplement to GOOD security. If no one knows how it works, then it takes much more effort to even understand what's going on, but you also need actual security to prevent access. Using an EVVA Magnetic lock will prevent people from breaking in because it's obscure, but it's also a good lock.
@check5375 жыл бұрын
I love that the origin story for this work is “honey, I got a gift for you!”
@thewolfin5 жыл бұрын
Defcon, I've got a talk for you!
@MrKapceru5 жыл бұрын
its defcon27 but still no mic to hear questions from audience
@Nicholas-f54 жыл бұрын
Pros repeat questions
@L1m3r4 жыл бұрын
@@Nicholas-f5 - real pros (so called "l33ts") don't need to repeat questions from the audience because there are some mics in the audience. ;-)
4 жыл бұрын
It's now a tradition! We should never have microphones.
@kitten-inside4 жыл бұрын
That is tomorrow technology, for any given value of "tomorrow".
@nielsvanderveer5 жыл бұрын
It is 2019... HOW ON EARTH IS SQL INJECTION STILL A THING??!!
@thewolfin5 жыл бұрын
It's current year and humans are still dumb and lazy. Why are you surprised?
@duskpierce78025 жыл бұрын
That's like asking why people don't wash their hands after using the restroom, or ignore vaccination...
@mina865 жыл бұрын
PHP
@andrewwright.4 жыл бұрын
@@duskpierce7802 I use the sink to wash my hands before I touch my "thing" because its clean.... Its everything else that isn't. Never really got why we wouldn't wash before... But then there are some dirty people about.
@jamess17874 жыл бұрын
@@mina86 PHP5, pretty sure PHP7 automatically sanitizes post and get input. In any case, bad humans.
@lourensjoubert86525 жыл бұрын
Biggest applause came when they got the sound to work
@FennecTECH5 жыл бұрын
it would have been REAAALLLLLY hard not to start all the cars.
@resetcoder5 жыл бұрын
Oil companies would make you a hero if you did. Others wouldn't.
@thewolfin5 жыл бұрын
Alarm is a bit safer, and should raise some alarms at MyCar and get a few engineers fired.
@Pileot5 жыл бұрын
So my brand new 2019 Kia came with a cell phone remote start built in. The app requires you don't have a rooted phone (easily bypassed). I've always wondered how easy it would be for someone more skilled than myself to snoop on the messages being sent / received and bypass the "security". I DID notice my app had a "mandatory security update" a few weeks ago... perhaps it was to close some of these holes?
@DariustheUAVguy5 жыл бұрын
Cellphone remote start is my fave easier than can bus hijicaking. And it can be patched to run on a rooted device.
@ocoolwow4 жыл бұрын
I would not hold my breath on the loopholes getting closed, sure it might have fixed some but really there is no way to tell what the update might have done.
@greekguytalks4 жыл бұрын
keep the car on low fuel always so it won't be targeted
@ocoolwow4 жыл бұрын
@@greekguytalks so what you have to get gas everyday or risk running out yourself not to mention the strain on the fuel pump? No thanks that is a terrible tradeoff.
@TNFSDK4 жыл бұрын
m2m suite seems like the kind of service that caters to car monitoring companies, where a track of where the car is and has been might be wanted and requested by the customers. They should however have changed a part of their service or changed the retention time for the GPS logs so that they expired after 1 day or x hours rather than keeping a full comprehensive log.
@aziztcf5 жыл бұрын
Did not expect to see SQL injection in 2019. Especially in this context.
@barongerhardt5 жыл бұрын
Last I checked, SQL injection is still the most common security vulnerability.
@duskpierce78025 жыл бұрын
Remember, a majority of the internet still runs on unsanitized inputs.
@ErebuBat5 жыл бұрын
Ah yes. I recall a quote about this from little Bobby Tables
@mstuart0762674 жыл бұрын
Ladies. Get you a man with this level of dedication
@MaxBrix5 жыл бұрын
When you can hack a computer to do anything you want and you can't unmute it.
@Zanoab5 жыл бұрын
It was obviously a hardware problem. \s
@thewolfin5 жыл бұрын
Mac user blames Windows
@Null--5 жыл бұрын
Even brilliant people will get nervous before a huge crowd of people staring at them.
@shect15 жыл бұрын
Why is it that companies that boast on social media about their security always have the worst security practices?
@JohnDoe-nq4du5 жыл бұрын
Why is it that people who have arms always also have legs? When nearly everyone does A, and nearly everyone does B, yea, you're gonna have a high correlation between A and B.
@allooutrick82664 жыл бұрын
I've learned to just be wary of any advertisement. Sometimes a company gets it right but, a lot of times, it's the company humbly standing by and letting their product speak for itself that has it right.
@lawrenceredmacher43825 жыл бұрын
why is it every time I watch a video from one of these elite computer hacker conferences, they never have their computer stuff working right XD
@dco50555 жыл бұрын
Cause everything is disabled by default. When you go inside you pretty much want to be in airplane mode or you will get hacked. They probably have stuff disabled on the A/V till it's time to play. There is thousand people there wanting to hack that screen or thinking what it would be like
@fpnbrian5 жыл бұрын
because nearly everyone attending defcon shows up with recently wiped / clean install software on old used hardware that they will never use again and most throw away after attending, and thus not much testing of the laptops & software on them. People hacking into fellow attendees computers and devices happens too often for anyone smart to show up with their real personal computer and devices with them.
@Samouraii4 жыл бұрын
Red shirt guy has done well for himself since Blizzcon
@nirfz4 жыл бұрын
Interesting that in the US people like to start their cars by remote. In most countries in europe, having your engine running while not in the car just to warm up the car, defrost the windows ect. is illegal, or at least costs you a fine. If you want to have a warm car you install auxilliary heating (or buy the car already outfitted with that) Those systems have remote controls or a sim card slot so you can call it or send a text message to start it. Also this uses way less fuel than the engine ideling, and it heats the engine too, so less cold starts. This means longer engine life. Then again, if your car isn't heating well when started it is either a very old Diesel car, or something is broken and should be fixed. (proper modern Diesel cars for example have additional heating which makes warm air come out of the vets in 1 minute or less after start. And with modern i mean the last 10 years.)
@kusucks9914 жыл бұрын
It's illegal in some (most?) places in the US too but I think it hinges on the car being locked/unlocked. I've heard of people getting tickets for leaving their cars running in the driveway unattended, but I was told it was to discourage that behavior so someone doesn't hop in the car and steal it (yes, has happened, I'm sure) resulting in more police resources being used on more car thefts. So a remote start with the doors locked would bypass that problem.
@nirfz4 жыл бұрын
@@kusucks991 Here in europe it is mostly illegal for enviremental reasons (and a little bit theft prevention). In my country you aren't even allowed to have the engine running while you scrape the ice off the windshield. And if you have your keys in the open car and somebody steals the car no matter if the engine was running or not, you will get fined for "inviting" the thief. (this is my translation of the legal wording).
@kusucks9914 жыл бұрын
@@nirfz yeah so it sounds like we're on the same page for the second half but I haven't heard of any concerns regarding the first half in the US, legally speaking Can't have the engine running while you're scraping ice? That's just oppressive. I can't imagine trying to do that; there's external heat vents that blow on the outside of your windshield called defrosters that are partially designed for that...
@tobyvision4 жыл бұрын
@@nirfz It's a good intention, but it's such a microscopic contribution to emissions that it infuriates me someone decided to make a law about it. Meanwhile stopping one logging operation on carbon entrapping clay soil would be about a billion times more effective. But yeah, let's nickle and dime guilt trip the average guy.
@tobyvision4 жыл бұрын
@@wudntulike2no32 It definitely irks me when I see someone idling a car for a long time for no reason. But in reality, the amount of fuel used and emissions produced is pretty trivial compared to accelerating from four or five stoplights.
@nickroberts80115 жыл бұрын
Sounds like his wife's car needed a new thermostat, not a remote starter... unless he lives 5 minutes or less from the airport I guess
@gorak90005 жыл бұрын
Yeah!
@bradcloud76705 жыл бұрын
Good job being an asshole. He literally said she has a medical condition that reduces blood flow into her hands...
@neroxen_5 жыл бұрын
@@bradcloud7670 I don't think you understood what was said in the comment.
@exoc15 жыл бұрын
It sounded like a diesel when it started. I had a Diesel Impreza years ago, they take ages to heat up in the winter. What Subaru did to get the heater working faster was to implement heating wires in the vents, just like a hairdryer. My guess it's that system that have failed, making the car to "never heat up".
@nickroberts80115 жыл бұрын
@@exoc1 good catch. I didn't even know Subaru had a diesel engine available but that's a solid theory.
@thatgeezeruk4 жыл бұрын
What a great presentation @ 11:34 should be very comforting for every non-tech "Oh My God" love it :)
@gptandi4 жыл бұрын
15:40 for when they get the sound to work
@fathernojoy27065 жыл бұрын
Classic SNL skit at work here. User "Still no sound"..."yeah its plugged in"....IT Guy: "Oh My God MOVE!!"...still didn't work. LOL.
@ryoohk5 жыл бұрын
anddddd im not going to install that now.
@rubberonasphalt3 жыл бұрын
lol, why doesn't Defcon ever have an AV tech, to make things run a bit smoother?
@ConstantlyDamaged5 жыл бұрын
Well, that's not good. Though it is great they (eventually) closed the SQLI problems.
@patrickmcginnis74 жыл бұрын
I would have went straight to the dealership or the remote start company parking lot (assuming most employees prolly got a good deal on one) and set everything off. I have a big hairy hard-on for privacy, and this is a direct example of how your data is being used (and probably sold!) I bought a 2015 Ford Flex and have found so many issues with the onboard computer its ridiculous, even when in warrantee it doesn't cover software updates, they want to charge you $160. Well, if your software is hanging when i exit the vehicle and is leaving power on to certain systems it kills the battery over a period of time that isn't evident (ie. interior lights go off,etc. but the bluetooth box and other power distribution is hot to the touch the next morning when it should be cold). Every year when a new update is released and I don't buy it, inherently stuff starts failing. Maybe I'm paranoid, but they have way to much control over my car. The auto industry is going to hell. There were 3 recalls on my car, everytime i try to set an appt they are mysteriously "out of parts" - but they mfg. new ones everyday. They are crooked AF. They know how far I've traveled and send me snail mail exactly at the recommended oil change mileage regardless of how much time has passed. I have other vehicles. It may be paranoid, but my data and where i go is my business. #ANDREWYANG take your data back!
@AhmetMurati5 жыл бұрын
I have been sanitizing the inputs since 2009 they still have SQL Injection and now it is 2019
@kusucks9914 жыл бұрын
What I didn't understand from this is how all of these attack vectors would be useful to someone standing outside my car or someone who is otherwise trying to compromise me/my car. How would they get the DeviceID of my car's device if they were to use the admin account? Break in, pull the device, and then just use it as a bypass to not having an ignition key but not to bypass having to get through the locked door? (basically to gain the ability they didn't previously have to start the broken-in car without a key) Would one be able to get someone's DeviceID by knowing their email address used for login? So a "friend" who knows your email address could bluff their way in through the API, get your car's DeviceID, unlock it, and start it, perhaps from an open access apartment parking lot?
@NielsNL4 жыл бұрын
Have you seen the part about the GPS data? Shouldn't be hard to just scrape all the current positions of ALL the vehicles, and then find nearest vehicle. Nice App-Idea: Locate Nearest vehicle, show route, remote open and start.
@kusucks9914 жыл бұрын
@@NielsNL I understand what you mean but from what I saw you had to have the DeviceID for the API call
@joeledj4 жыл бұрын
"My girlfriend" - loses the defcon audience a minute or so into his, um talk.
@nicolali47924 жыл бұрын
This guy sounds really Canadian he fuzzed over the complete explanation for Renauds syndrome people needing remote car starters in the north. It's so cold for months in a row that you need to (much debate rages here actually) run your engine stationary to warm up your engine before applying load to it also heats up the interior of your car from -15 C or -25 C to like -3 C in 10 minutes idle time more confortable for the human. We would spend 2 minutes putting on outdoor jackets go out start car 10 minutes etc before plan to leave, run back inside only mildly cold take off outdoor stuff, then you're set to leave soon. Now we all use remote starters in the warm and convenience of our living rooms in the time it takes to find it in your bag. This detail of it being so uncomfortably cold inside a canadian car in winter before it has had time to warm up just needed to be mentioned i felt.
@kanescrimes48484 жыл бұрын
I had a dream that a bunch of middle school girls (I dunno why it was all little girls) took remote control over a fleet of Tesla trucks and drove'em all onto a launch site while playing Rick Astley's "Never Gonna Give You Up"...and they were dead serious about whatever they were trying to achieve by doing that. I know they were dead serious because that's how my mind presented it to me. ...that's it...Nothing profound, nothing clever, nothing insightful or witty...just utter nonsense that I'd LOVE to see animated for some reason.
@mayvalauvryar15904 жыл бұрын
I love your opinion about puzzles.
@XenonG5 жыл бұрын
Is this your car?... It's my car now.
@lourensjoubert86525 жыл бұрын
Loved the fact that a team of hackers couldn’t get the sound to work 😂
@befer4 жыл бұрын
The funniest part is that form the whole 41 minutes of the video, KZbin automatically picked the one where the hacker gets the assisance with the sound problem LMAO
@PeterKoperdan4 жыл бұрын
Young Christopher Hitchens at the start there.
@emrealsancak13345 жыл бұрын
We can hack a car, hell we can hack anything but can't get sound to work :)
@DustinRodriguez1_05 жыл бұрын
There's a fairly simple, and almost inevitable, solution to this sort of thing. As we already have with other areas of engineering, software engineering at least in critical potentially-life-ending-or-saving scenarios, will need to have a real form of credentialing and legislated requirements for companies to hire credentialed engineers, give them the tools and time required to do their job competently and safely, and most importantly, LISTEN to them. Currently, it is literally impossible for a company to face criminal negligence charges if their product involves a computer in some way. No matter how actually negligent their behavior might be, the courts have found (see the Toyota 'unintended acceleration' scandal from a few years ago) that there simply aren't any legal standards that a company can be said to have violated. Right now, even if the companies engineers all say "this product is UNSAFE, and it will KILL people if you release it" but an executive with an MBA and no engineering knowledge whatsoever says 'screw it, we're going to market', that's fine. If they did it in an industry like construction, they would go to prison for criminal negligence. If they do it when there's a computer involved, they flat out can not be punished at all.
@AKsevenFOUR5 жыл бұрын
What a horrible idea. In most countries there are already regulations concerning who can call themselves a professional engineer, and that ensure nothing other than fees are going to be paid to push paper.
@sznt86485 жыл бұрын
I like the idea of companies having to take responsibility for any kind of damages cause by bad software, but that "credentialed engineer" thing sounds horrible.
@DustinRodriguez1_05 жыл бұрын
@@sznt8648 If there was an 'easy' answer where we didn't have to balance pros and cons I imagine we'd have a solution already. Unfortunately we seem doomed to wait until there is a large-scale tragedy and then we will end up with whatever power-hungry politicians serve up to gain approval from their ignorant and emotional base who just want SOMETHING to be done. And then we'll be almost certain to get one of the worst possible outcomes.
@sznt86485 жыл бұрын
@@DustinRodriguez1_0 true
@peteranderson0375 жыл бұрын
@@sznt8648 Every other form of engineering requires some form of credentialing except for software engineering. It was all fun and games 25 years ago when none of this mattered but now these things are crucial parts of vital infrastructure now. We wouldn't tolerate this kind of shoddy workmanship in the design of the brakes or air bags, why would we allow it in the computers that that activate those critical safety systems?
@kde5fan7375 жыл бұрын
Now it's time to look at how many and which cars, without aftermarket accessories, can be remotely disabled or controlled in some way. I'd really like to know if it is possible to kill the ignition in a car or control the steering or gas and I suspect the electric or hybrids will be much more susceptible to this than normal cars. I still think it's a good idea to put a mechanical kill switch in a car, like for the fuel pump, so you can switch this if you are worried about theft and the theif would have to figure out where you hid it. I guess you could also use an electric switch and maybe pair it with an RF or cellular receiver and toggle it remotely and this could be paired with a remote start system as well.
@bradcloud76705 жыл бұрын
You can put in a battery switch that can be really hard to locate/too hard to figure out. Crimes are often crimes of opportunity. A guy isnt going to take 2 hours to track down the switch you hid, when he can just find another vehicle without one
@kusucks9914 жыл бұрын
@@bradcloud7670 I saw a video from someone using that very thought and proposed just removing the starter fuse when you get out of the car. Simple and not something an "opportunity" thief is gonna screw around trying to troubleshoot. Made sense to me.
@alockworkorange72964 жыл бұрын
Trick to get ur remote started from further away hold the remote to the bottom of ur chin and ull get an extra 25-50% extra distance
@eurithmicsrocks4 жыл бұрын
Just install the remote start somewhere it can only be accessed with a key
@DannyWilliamH4 жыл бұрын
Guy in the very beginning looks like a dork but sounds like Barry White. That's awesome lol
@MrPhotodoc4 жыл бұрын
"Some times things get complicated..cated..cated". Haha.
@connie_d5 жыл бұрын
"Yellow/Green (~) IMO" = "Yellow/Green or thereabouts in my opinion"
@petergerdes10946 ай бұрын
How is it that all these devices have worse security than something I'd make in my basement with a raspberry pi?? They do fucking 2 way communication so how hard is it to just do diffie-hellman key exchange and some existing crypto library?
@A453Ай бұрын
Because business. Every employee is doing the bare minimum to get their pay whilst giving no craps about the quality of their work as it doesn't effect them. Their bosses only care about looking good to their bosses, which means they want to produce the most work they can, and security isn't visible to the average manager, so it doesn't matter.
@lvcsslacker4 жыл бұрын
sound over HDMI or whatever connection is going into the computer maybe?
@error.418 Жыл бұрын
The carbon monoxide warning seems outdated considering how long catalytic converters have been around...
@Jmaxxz Жыл бұрын
I still wouldn't recommend starting a car you don't own...
@alockworkorange72964 жыл бұрын
These problems have been know about by mechanics and inatallers for years some systems are alot better some are worse the one he choose is middle of the road. When i checked last fsctory mercedes benz remote are the most secure Viper makes a few differnt systems that are quite good for home install units they use rolling code and has sorftware thst wont allow use to use the key thats bypassing the aystem for more then 15 min and if installed correctly it will lock u out there is ways around but it takes enough time that somebody should notice them fucking with ur car By the way as far as nonody starting a car using SEQUENTIAL injection by wirignthe icm to 12v and shorting the starter off the frame with prybar
@SalzmanSoftwareАй бұрын
A remote car tracker company should not be owned by an analytics company
@moth.monster5 жыл бұрын
The more I hear about car hacking like this, the more I want to get a truck with an old all-mechanical Cummings diesel engine and say fuck it to all these electrons. Or maybe I'll get a used car where everything is lovely wired communications that can only be hacked from inside the car. That could work too. Maybe I'll get both. A normal car for normal days, truck for when things need to get moved. Or when an EMP happens.
@graniteslinger2 ай бұрын
this man figured out how to buy himself new toys to hack and make his gf think it's a gift for her. LOL
@rudolphriedel5414 жыл бұрын
Why start the car when all you want is a pre-heater?
@garagatza4 жыл бұрын
In very cold areas - but not only - you also want the engine to reach optimal operating temperature, also heating the engine provides with the heat required to heat the car (when you start the air conditioning/climatic control). Indeed a remote car heater would have been probably better for security reasons, but it won't help with the engine being warmed for the road.
@rudolphriedel5414 жыл бұрын
@@garagatza Check out this promotional video I just found: kzbin.info/www/bejne/kHaZdXyai717e5Y Heating the car including the engine is exactly what these things are build for and these have been around for a long time now. So adding a device to remotely start your car for this purpose which has to circumvent the manufacturers security is a pretty stupid idea when all you want is a pre-heated car.
@stewartbladensb4 жыл бұрын
I was more interested in if they got the sound working than what ever he was talking about.
@markemarkpsv14 жыл бұрын
Wow, that was embarrassing but also ironic it's called DEFCON. Or, should that be DEAF CON? How many Hakers does in take to get sound? 27 👊😎👍
@Ssaps Жыл бұрын
Probably the youtube video that started the mandate for security gateways in vehicles in USA even though it is not even relevant . RIP aftermarket.
@Ghost_Rider_786 Жыл бұрын
What a nob ...he did ALLthat so his GF didnt have cold hands ??? Just buy her a PAIR of GLOVES !!!
@mikemalo63364 жыл бұрын
Am I on LSD or, ......go to 31:00 and pause the video. Look at the screen, take 2 steps back away from the screen and tell me what YOU see. I am looking at a very romantic screne of a boar lying on a bear skin rug-covered floor in front of a roaring fire and an old TV showing static so this image must be from the 80's, i think.
@mikemalo63364 жыл бұрын
@Your moms HITACHI Right!??!there is definitely a stout, 4-legged animal with a hunched back, standing on a fluffy white material. The animal is facing to the left and looking at an old school CRT television set. You can see it too, Right on!
@vampirosonly62824 жыл бұрын
maybe because im a sound guy, but once they started to have sound issues I couldnt watch any further
@TymexComputing4 жыл бұрын
Hello - i think it is generally illegal or unethical for the environment for sure - when you start your car and leave it on for over a minute without riding - maybe where you live its not in statute though :)
@garagatza4 жыл бұрын
internal combustion engines run much better at a specific temperature. I would go on,but if you already own a car you should know that.
@gg-gn3re4 жыл бұрын
You should warm your oil before driving in cold weather. Also you should look stuff up before posting stupid shit. Both of these things you could and should know on your own, the information is there for you.
@RobertPendell5 жыл бұрын
11:44 .... Someone had their Android phone on.
@eprofessio4 жыл бұрын
Dude do not invest that kind of work or cash until you put a ring on that finger.
@kanescrimes48484 жыл бұрын
Christopher Hitchens had an affair with Rebel Wilson's mom and their son is in this video
@kanescrimes48484 жыл бұрын
How fitting is the name Rebel Hitchens?
@geroffmilan33285 жыл бұрын
I love tech, but... wouldn't s pair of frickin gloves have made more sense? Frankly, screw remote *anything* in a car. At least, until IPS becomes std for the CAN bus. Might be the one place an IPS is actually useful.
@SiliconSentry5 жыл бұрын
Not sure where you live, but I'm in Wisconsin, last winter we had -50 windchills with a normal temp of -20. Even with REALLY nice gloves, you're gonna get cold. It's just the way it is.
@gameglitcher5 жыл бұрын
I live in the country, and with an older car i just separated the key fob from the key and start the car. Then use the fob to lock it.
@TremereTT5 жыл бұрын
Heated stearingwheels and heated motorbike handles exist! Id suggest some of these.
@gg-gn3re4 жыл бұрын
@@gameglitcher in my older car I just put a relay in there to flip that runs my starter to start the car...
@interestingspagetti4 жыл бұрын
I thought this was for hackers???
@Wesrl5 жыл бұрын
This then loops around to bounty hunters using the GPS data
@LQ_LQ_LQ4 жыл бұрын
Can someone please tell him it's NOT CALLED "SEQUEL INJECTION". This seriously triggers me
@ingmarfris81754 жыл бұрын
At first I thought he was gonna get his gf some woolen gloves or something
@Tinfoilpain4 жыл бұрын
But can you Download a car?
@JlerchTampa5 жыл бұрын
36:10 'None of this is the most offensive of all' Wait, it gets worse, How? Oh... wow.. Son of a bitch...
@therobb57384 жыл бұрын
My car is hackproof and EMP proof. Its carburated. Lol. Never said anyone with a pocket knife or a screwdriver couldn't steal it. If you can get that bitch to fire over before I do, go for it. Ha.
@reddcube5 жыл бұрын
Auto start is a dumb feature, but then again I’m perfectly happy sitting in my coat waiting for the car to warm up.
@jakenelson13664 жыл бұрын
11:44
@ThumperDana4 жыл бұрын
Can probably also create a condition that would STOP a running car as well, in traffic, even more dangerous...
@tschaderdstrom21454 жыл бұрын
Not once your key is in it.
@tecsmith_info4 жыл бұрын
LOL! Breaking cars using SQL injection... FFS wow...
@LuckySoaringTiger4 жыл бұрын
Elon musk put on some weight
@andrewwright.4 жыл бұрын
Unplug the can from any vw,BMW, merc and the car will not start. IMO is in the can so...
@fondren0014 жыл бұрын
Can hack a car... Can't make sound play on a video.
@blzt32064 жыл бұрын
Don't put reaction gifs in your talk dude please
@RealCadde5 жыл бұрын
Teach your girl to do push ups.
@TheChodax4 жыл бұрын
Fuck me, talk about solving first world problems.
@paulbenowitz88354 жыл бұрын
He didn’t hack a car, he hacked HIS car. There is no Nicholas Cage moment here for me. 40 mins I’ll never get back.
@rbh007234 жыл бұрын
Frankly I enjoyed it and it made me wonder if there are any safe remote start systems for my car out there
@paulbenowitz88354 жыл бұрын
Ryan Hamilton I’ve been installing remote starters on cars for 20 years and I was very interested in this video. I’ve only had one customer broken into AFTER getting an alarm system. And even he admitted he wasn’t sure if the system was turned on. The truth is a little led light flashing on your dash is usually more than enough to warn away thieves. If someone wants YOUR car they’ll steal it with a tow truck. In general most criminals aren’t going to risk an entire night of breaking into cars over one Honda Civic with an after market alarm system.
@Nicholas-f54 жыл бұрын
It's kind of noisy for an electric car.
@HolowatyVlogs5 жыл бұрын
11:00 Conference about security and technology, can’t get a PowerPoint to output Audio. 🤦🏻♂️
@teeroy7665 жыл бұрын
Ever since I started watching DEFCON recordings, I don't think I have ever seen the presentation audio work correctly. It doesn't help that Murphy's Law always seems to come out during presentations.
@10-AMPM-014 жыл бұрын
Um, is there any, um, reason, um, he can't, um, speak, um, without pausing with an "ummmm" ? Does he think someone else is going to jump in and speak instead?
@Foxbat11554 жыл бұрын
Is DEFCON just one huge marketing advertisement plot for the very companies they claim to "hack"?
@spambot71105 жыл бұрын
cool project, don't see any real security implications though. it's not exactly news that if you have access to the can bus and the car's internal wiring, you can bypass its authentication. it's cool though! just, shouldn't this be at like, a maker con and not a hacking convention? or at least not titled "my car is your car" when this doesn't lead to any practical attacks?
@AKsevenFOUR5 жыл бұрын
I think you missed the point. The physical attacks / CAN bus fun was the groundwork. The real issue was any legit install of the phone option, including those done by a major manufacturer was able to be bypassed via the internet with no physical access.
@djneo92nl5 жыл бұрын
Well the can bus hacks are not real security issue's but having an remote app that has a hardcoded Admin password in it, And sql injection so you could in theory make a script to start every car on that platform. or get there locations, unlock and disable te alarm. steal shit from it. or the car it self
@refraggedbean5 жыл бұрын
@@djneo92nl is very much right here, I'd say having the ability to easily unlock any car with this system makes it pretty easy to steal very expensive things, either ones in the car or the car its self
@renecouture37195 жыл бұрын
Looks a bit illegal
@elstyr5 жыл бұрын
The older you get, the more you get into thinking: 'Yeah, thanks for that hack, but why couldn't you just keep it to yourself'? What I'm aiming for is that all the nitty-witty-hackers will at some point start a 'normal' living at some point, and by that change focus on what's wrong with e.g. that particular remote they just bought. Its because their focus changed completely once their first born arrived. And then they realise: 'Hmm, well, the 80s weren't so bad', let's try that lifestyle out again: Offline?
@gg-gn3re4 жыл бұрын
Unlikely, tons of old guys still do it. If you have an active brain with curiosity it doesn't go away. These guys are nice enough to find issues and report them to the source and then open their findings to the public months later. It's a lot better than it falling into the wrong hands because it was kept a secret www.wired.com/story/eternalblue-leaked-nsa-spy-tool-hacked-world/
@elstyr4 жыл бұрын
@@gg-gn3re I understand your plea, but tell me how does posting these reveals publicly help preventing any hack from 'falling into the wrong hands'? The 'wrong hands' have access to KZbin too, right? It's just accelerating - dev side / hack side - ever speeding up - ping pong - until devs become obsolete when only machines will be able to coop with the speed of change?
@gg-gn3re4 жыл бұрын
@@elstyr It's already patched.. and it's to learn from and explore. 20 years ago when I started learning I learned from stuff previous humans did. You've probably learned things from what previous humans did as well.