Good for the market. The (ex)owner will buy a new one.

It could be mitigated to a degree by reducing the range of both the car's and key fob's to say 20 feet. There's really no good reason to be longer than that.

Or better still, simply just open the car door with the physical key. You have to walk to the car anyway so no time is lost! I guess it’s because even that is too much effort these days!

@@timlc its kind of a big deal if you have kids and hands full all the time

Well, as a software engineer with security as my main field; there are ZERO education in proper secure design of digital locks when you educate yourself as a software engineer at tech universities. Zero! But the entire world expect you to be a security genius as an engineer. So all these security-illiterate engineers end up being “creative” and make up their own horrendously bad security solutions that only keep themselves out. 😂 fun fact to scare you even more: 100% of all digital safe locks in the entire world can be opened with a factory master code. I know this particularly well, because I developed the world’s first tempest-certified timelock-system for civilian safe-locks to prevent illegal covert governmental level Abusive break-ins done by corrupt cops and corrupt intelligence agents targeting innocent civilian wealthy people. This project has been a big eye opener for me in many fields. The world you live in is not as secure as you might think it is. 😂👍❤️

That would be a good solution.

@@andykirby Stolen cars go to Africa etc. Insurance pays for a new one to go to the UK. Helps the car industry.

​@@andykirbyFord do!

good points, well presented! 👍

Later BMW and Mini fobs have the motion sensor in the key, articles reference this around 2019.

You should disconnect high voltage lines before working on EVs.... as a mechanic you should know this.

No reason to do a master disconnect to change the oil tho

The word is actually "Ensure"...not "Insure" in this context...You`re welcome.

For anti-theft - Take the fuse out that provides power to the diagnostics socket, not many people carry a 12v battery about to power up their controllers and programmers. MOVE the diagnostics socket to a different location by extending the wires. Or you could replace the OBD2 socket for a completely different type, like an old parallel port connector off a computer (providing you have plug and socket) and make an adaptor with a plug and short lead going to the original socket. People trying to pinch the car would be going WTF! They would find some random connector and not have a clue which wire was which. You could also use a multi pin circular type. You can give the garage the small adaptor for services etc, then they can plug it in and put the OBD2 plug in the other part of it. Then I would fit a hidden switch connected up to one or more electrical circuits like the fuel pump and starter circuit. Anything to slow people down. Modern cars can be taken within minutes, even without keys. Sites sell everything people need apparently.

@@mjh5437 *you're welcome. You used a 'grave' accent instead of an apostrophe.

Crime does pay.

Pity that the right- wing sometime mis-use it to push their agenda?

Previous owner of my old audi installed a kill switch, that allows engine to start, and kills it after about 30-60 seconds with alarm, if you don't push a hidden button. It honks before to remind you. It starts working each time after closing any door, even if engine is already running. In case of carjacking it allows supposedly armed criminal to drive off, leaving you safe. I think it was banned some time ago, because of stopping engine while riding. One can still park with momentum though, it doesn't brake.

Haha! The loose damaged battery connector in my old car used to serve exactly that purpose. Stealthy secret smart high tech kill switch.

so like a 2 way switch that sends the power to the horn every time they hit the start button instead of the starter :)

I used to work for a small company which made kill switches that also required a 4 digit code which you could input via any designated switch in the car, or optionally by a hidden switch. If the car was entered and the code not input within 2 minutes, a sequence of events would start which was designed to disable and then draw attention to the vehicle in some very public ways.

Haha that's interesting 😁

There were some MOD buildings blamed for blocking entire roads of garage door openers!

I don't think that's correct as why would there be a challenge & response visible on the keyfob UHF frequency when you press the start/stop button? I do know my car also has a method to start it using RFID but you have to hold the keyfob very close to a section on the steering column in order for it to energise. Passive 125khz RFID has a super localised range of maybe 10cm, that's not what's being used here. I find it hard to beleive its possible to do a long range passive RFID scam because the transmission distance of the fob is so short, it could be possible thiugh, I have seen videos of thieves with a very large wire antenna. In my car though it is active RFID which is in the UHF range. Passive RFID I think is used in cars that have a physical key inserted into the ignition,, then that key by nature can be very close to a reader all the time as it remains in the ignition.

@@andykirby What you are seeing when you press start/stop is the keyfob's 433MHz response ( possibly duplicated) Yes, normal car immobiliser keys are passive RFID but keyless entry systems are not - they use the same frequency but a larger antenna than the coil round the ignition key, and active receiver in the fob, which returns a signal via 433MHz UHF. 125kHz with a moderately high transmit power available from the car battery plus an active receiver in the fob can easily do a metre or so - cars typically have at least one antenna at each door & boot, and at least one around the drivers seat. The fob uses an inductive antenna (often 3 coils at right-angles to each other) tuned to resonate at 125khz, which can produce enough voltage directly from the received signal to wake the fob's control chip without any active receive power draw when idle. It is not practical to make a continuously-listening 433MHz UHF receiver running off a fob's coin cell - it would draw too much power for sensible battery life. The backup starting method does use conventional RFID - the chip in the fob can act as a passive RFID transponder if the battery is flat.

Understood, useful information thank you.👍🏼

​@andykirby It's important to note that information on this topic can vary by manufacturer and by the function being performed. IE, opening the door using the fob vs starting the vehicle. There are some interesting vulnerabilities in fobs and the replay and relay attacks require zero understanding of the vehicles security system and only operational knowledge to carry out the attacks. Having said that, the popularity of the topic of car hacking is growing due to flipper zero videos. Once they know what people in my profession know, vehicle theft will be a lot worse.

yep i also use a steering lock as a visual deterrant even though i have an immobiliser and tracker.

@@JamesWilliam70 sometimes a solution could be free, effortless, and relatively quick...pull the fuse for the fuel pump. Car won't go without any gas supply.

Most often crimes are opportunistic. If your door is unlocked then there's a much higher chance of something being stolen versus them breaking a window to get in.

That is exactly right: locks are only there to stop honest people When and IF some'one' wants to get in - a LOCK will not stop them. Locks did not work on chastity belts either. One reason why DNA testing fro family connections is totally invalid and useless One does not know who had s-ex with whom and when. Just be thankful for being alive - Leave the past behind.

The same applies to hacking, everything is hack-able, you just make it as hard as possible so it's not worth the effort

Yup, just said that to another person here who said Andy just taught the theives something new.... Some people are very ignorant in their little bubbles.

Banana 🍌 people

Car companies could use South Africa as a testing ground.

The assailants from the 2021 "CIT video" from Pretoria were using cellphone jammers, that's why when Leo Prinsloo told his partner Lloyd Mthombeni to "phone Robbie, phone Josh", he couldn't get through.

I bet especially some demographic group in particular does that...

Hey, it was good enough for Diana Spencer. :D

There are only so many key cuts used. Probably with worn key or tumbler ones that are close might even work. They make "tryout keys" for automotive applications which are just a bunch of different key cut patterns. Sooner or later one of them will probably open the lock.

… priceless! Taking that idea one step further, my old jalopy used to have a damaged battery connection. Not being familiar with the car, a thief would be unlikely to know that this “dead” car just needed to open the engine compartment and shove that battery connector back on to start.

Jesus, I had the ultimate anti-theft one, beige with rusty red fabric interior, HLS trim with a massive 1300cc engine. It was a good car in it's day as a first car, 155/65 SR12 tyres!!! ( I think). I had to replace the head gasket, went through numerous sets of front brakes, all 4 gas suspension units and connecting pipe at the rear, then the two radius arms "fell off" at the back and the rear bearings fell apart - it was a fun car, but also cheap to fix. The slimline 12band graphic EQ and 4x40Watt booster from Dixons and the Matsui 3 way shelf speakers were pinched and they left the car!!! I had even fitted a centre console with a radio, EQ and booster and tape holder in! They left my Ham International Multimode 2 that was under the switches on the right hand side, but broke the steering lock, surround and ignition switch as I think I disturbed them. The door lock had been "removed" or punched through in to the inside of the door.

@@Bond2025 well at least if you got a puncture you could likely find a new tire in the lawn and garden section of a store

The type of alarm you need is the one with the immobiliser that is programmed using switches in the car, so when you get in, to start it you pick a combination such as - left indicator, rear demister, right indicator twice and A/C button BEFORE it will then start the car! No one can guess the combination or start using OBD2 to get the info etc.

What brand was that? I would hate to get one, test it, be confident it worked then find out it degraded and wasn’t blocking.

Your faraday pouch story is BS.

But that won’t stop the transceiver attack !?

@@BitsofSkinI keep my car keys under my foil hat!!.

@@BitsofSkin No it's not mate, get up to speed.

I had a Peugeot 405 with a chinese lock, since previous owner lost the key. It had no steeringlock anymore, I could start the car with a coin.... I learned that when suddenly my keys fell to the floor when I was driving. I hadn't seated it far in enough to let some pin to hold the key in.

A penny will open most old fords 😅

Any Cortina key seemed to open most other Cortina's

I miss the days of the pillory

a straightened out wire coat hanger! 👍

​@@C...G...With the top corner of the door slightly bent... Apparently 😉

Dang! 😂😂😂

@@k1ortia yrs yes, bent out using a small plastic wedge... apparently! 👍

You still can't do much with the HackRF and Portapack, it's just a Flipper on steroids.

@@Bond2025 Le PortaPack H2 est principalement conçu pour travailler avec le HackRF One, qui est un logiciel défini radio (SDR) polyvalent

or they cut the wheel and replace it for selling the car, or they just sell the parts. A steel rod on your steering is lost after at least 5 seconds

A hacksaw and 20 seconds to cut the steering wheel takes care those. There is a hollow metal tube inside the steering wheel that is simple and easy to cut and the device slips right off. Your best bet is a hidden kill switch. It only costs a few dollars and 20 minutes to install. Cutting power to the ignition or the fuel pump won't allow them to start the car.

When I leave my truck in a forest and backpack for a few days, the fuel pump relay is in the pouch with the keys. Takes 20 seconds to pull out.

That was a good idea before the development of battery operated angle grinders with cut-off wheels. Those locks can be removed in a matter of seconds.

@@flyingdoctor99 some people let advertisements and media give them a warm and fuzzy feelings without using common sense.

I once visited a country town out in the middle of nowhere. We rode around with some girls. It was 1979. I forgot to lock my car. I said if we are going to be gone long, I need to lock my car. One of the girls said if you go back and somebody sees you walk over and lock the car and walk away the locals will take great offense. I should have moved there now that I think about it.

@@dougtaylor7724 yeh i live in a small village, probably more like a hamlet, everyone know who everyone is, like there are literally 40 or 50 houses. I have padlocks on the shed doors etc, but I literally never shut them, theyre just there to give the appearance of being locked. I dont htink it would enjoy living in a city again .

I can see that totally.

When Lothian and Borders police first went to Airwave, there was a spate of cars (Rovers and Metrocabs) that if switched off near the police HQ, wouldn't restart unless you towed them a mile or so away. Those used to use the alarm to immobilise the car, rather than the LF/RFID stuff that's the norm now.

@@Ayrshore I can see that happening if there was an AW base station on the roof. Although in a different part of the spectrum, there would be enough power to swamp the basic receiver for the immobiliser.

@@davidjowett8195 Exactly. The receiver in the Lucas stuff Rover Group used was garbage.

I used to get locked in and out of a Land Rover going to one PMR site in Wales, the RF was so strong on UHF it swamped the car!

I suspect that was from a different issue, like RFI, just good ole plain interference....doesn't have to be on frequency, like lightning. That coax cable for the CCTV cameras acted like an antenna, especially for a "dirty" modulated radio like a Baofeng.

maybe some interference, however you have to be also wary of deauthing on wifi CCTV.

My work has a scrap yard. One day about a 92 towncar came in. Wasn't too rusty and had really nice condition leather interior. Person scrapped it after buying it due to the quote for the work required to pass a safety. They put the forks of the loader through the windshield before I saw it. Man I was pissed

my 2003 bmw still has a metal key, but was the last, one year newer and they changed to the fob. p.s. love your channel.

@@juliogonzo2718 If it wasn't wrecked and was complete that was a terrible mistake! Easily worth several thousand bucks!

Growing up I used to love trunk monkey!!!

I ask the logical question after reading what you wrote: And I quote : "" i installed Trunk Monkey in my vehicle the only sure fire way to deter thieves from taking your vehicle. "" So the question is : How is installing ' Trunk Monkey ' in YOUR vehicle going to deter thieves from taking MY vehicle ? RIDDLE ME THAT greymann1384 - I would suggest that you undertake an extensive reading program to better educate yourself - study English and LEARN HOW TO ACCURATELY DESCRIBE what it is you are thinking about - AVOID AMBIGUITY AT ALL COSTS. Learn to write accurately. It is not that difficult for the educated people - but not so easy for peasants ( commonly known these days as Citi-Zens )

@@andrew_koala2974 Thank You Ken For replying, can I call you Ken you seem to be a person who would be called a Ken and may I suggest Ken that you research What levity is. Also my writing skills may not be on par with your Superb Standards of the English Language I commend you for reminding the rest of us lower classes of your Superiority and Intellectual Prowess that you possess, I hope you have a wonderful day and also lest I forget say hello to KAREN for me.

I’ve never owned a fob. I use the key method.

The Flipper is an over-rated expensive toy, no one that buys them ever knows what to do with them when they get delivered. They copy their own office access cards/fobs, read a credit card which they can't use from the flipper, maybe clone a garage door opener, that's it. I have never seen anyone use one for anything remotely interesting. They are handy for testing, that's it. Definitely not used in car thefts.

@@Bond2025 people have created a panic around the Flipper. Between ignorance and fake videos people drastically overestimate the threat it poses. It's actually been a fantastic tool for bringing awareness to our lack of security. The latest claims are that BLE spam can interfere with critical medical devices like pacemakers and insulin pumps, things that shouldn't even be possible with approved medical devices. With coding knowledge and add on boards it's capable of alot but the worst I've seen is temporarily disabling iPhones due to their poor protocols. A flaw which I believe they've claimed to have fixed.

Try 30 seconds. Watch this YT video of 2 car thieves stealing a Mercedes with a SDR. kzbin.info/www/bejne/gZ2pgXyke92drLssi=QYjSkM72TpCtfuoK

Yeah that's why I drive a 2004. Doesn't even have power windows. It had a chip key but I epoxied the chip in the column so I can use a $2.50 key

@@juliogonzo2718 They probably don't really want your 2004...

Old fashioned Key and Lock cars get stolen all the time genius. What is your point...???

Same

I believe he's using the firmware labeled uv-k5-firmware-fagci-mod-v1.1.2-SSB-lite-test.bin

Someone replied to my comment but you seem to be sh@dow banned or something as your reply isn't visible.

Criminals will be delighted to hear your advice......You think they don`t watch this stuff or what?

@@mjh5437 I know about it because the criminals have been doing it for decades, I'm not teaching them something new 😂

There is a lot of RF junk in the 433 MHz area…fobs, door openers, tire pressure sensors, military, etc. the sporadic transmission of hams isn’t going to be a 20 year long cause.

More modern cars have a higher frequency band solution outside the ham radio band to avoid that specific problem.

Apparently the US and Japan use 315Mhz and Europe has started using 868mhz.

Pesky radio Hams

You just didn't pay for the "Comfort Key" extra, all Audi models since 2009 have this feature built in and can actually be unlocked through VAGCOM.

@@owenwilliams857 Every village has one........

Make your own using an old mobile phone, very effective, live tracking...hide it anywhere. Commercial ones fitted by lazy installers always go in the same locations, so get ripped out after being blocked.

Interesting info George thanks. I did wonder after posting this and thinking on it a bit because like you say you only see one pulse on UHF when you press the start stop button. I will run a sweep at 125khz to see for myself. This seems to make sense because I have seen other videos of these attacks where one thief has a large wire antenna, presumably that's connected to a RFID transmitter with a bit of power behind it! Love your videos by way. I particularly liked your 23cms experimentation I saw somewhere. Very cool!

@@andykirby Cheers mate! My videos are junk compared to yours! Keep it up! 73 for now!

A rolling code blocks sophisticated replay attacks yes. But the simpler idea is for the attacker to jam all remote locking and watch for those car owners who don’t check to notice that their remote locking attempt has failed. A rolling code doesn’t help in a simple jamming scenario.

@@laulaja-7186 To prevent attackers from blocking car fob signals, manufacturers often implement anti-jamming technology in their keyless entry systems. This technology detects interference and adjusts the frequency or signal to avoid potential disruptions.

@@laulaja-7186It doesn't really block them. The car has to have multiple codes active at once (else an accidental press of the button would mean the car and fob were out of sync and you'd no longer be able to unlock the car). Thieves know this and will jam the car so they can capture a working code (as you press the button multiple times to unlock it). They then let you open and drive away the car, follow you and wait for it to be parked - then replay the earlier saved code (which is still active in the car) and drive your vehicle off.

Just disable PKE in the infotainment system.

@@honestlocksmith5428 Would be good if it was on topic. I’m retired from government work and mostly do easy stuff in the private sector that makes a few more bucks. Nice try…

To pull that off one would need to jam and capture at the same time which produces a new problem for the would be thief.

This was all possible via the OnSTAR system in GM cars, once in to that you could do anything, so could the control room, law enforcement used to listen in on criminals cars and get GPS data. Cars could also be speed limited, have faults introduced and were ready for the Pay Per Mile system we are getting this year. The engine could also be shut off if the car was stolen and emergency services called if it crashed. Other makes have similar systems and it means law enforcement can bug you without going near the car. It used to only be done when the car was taken in for a service.

Reminds me of the pranks Apple's Woz did and I must admit to doing a few hacking the school computers. Making the teacher think the monitor was broke, I sent rand values to the BEEB's video control memory over the ethernet (network). The screen went haywire. A shame he left the network manual lying around lol Another mate wrote a program to guess his password after we noticed it only seemed to be 4 chars long. We got it, "FROG". We used it to make ourselves priviledged. I then wrote a program on the server to go through all the server code to search for the ChangePrvi command. I then changed it to a new secret command name. Next time it booted it loaded up the new command. And only myself and my mates could make people priv or unpriv them lol

That ^ is just one version - the rest use signal boosters blah blah - same same. If a crucial system is not getting power, the cars not moving - which is the power of old-skool kill switches. "Keyless" has a safety feature that prevents the car stopping if key communication is lost - if the key is present it will start & not stop till the "stop" button is pressed. That's an invitation to thieves - if they leave it running as they refuel, they can run that car without a key for ages. Fit a kill-switch & hide it real well - but make it easy to press so you use it. Thank me later./

Hmm.... I'm not really talking about glorified car jacking, car jackers wont get far in this country at least with cameras everywhere and ANPR... the majority of serious car theft is done at night when the owner is unaware, container waiting at a nearby port and the car is shipped to another country before its even noticed. This is very stealthy organised crime.

That damn drain grate 😂

Moving the fob away from hanging behind the door would help too. The fob to car range is very short for automatic unlocking when you are by the vehicle. If you hang it behind the door (a common place) then forget to lock your door, that is just another way to have the car stolen; if you see videos of people police are looking for, trying doors on a street, it is likely that they are going for car keys rather than burgling while the occupants are home - more gain, less risk.

Thanks 👍🏼 It's a feature of Fagci firmware.