A 19-year-old German David Colombo who is an IT security specialist says he’s found a bug that allowed him to penetrate in a third party software used by a small number of owners of Tesla cars. This claim means that the vulnerability could allow other hackers to control the cars or at least some of their important functions if the security patch is not implemented.
David Tweeted that the loophole in the third-party software gave him the control for unlocking doors and windows, starting the engine without keys, and also disabling the security system. The German IT security specialist also claimed that he can see if a driver is inside a car, could turn on the sound systems, and also flash car highlights.
I could also query the exact location, see if a driver is present and so on. The list is pretty long.
And yes, I also could remotely rick roll the affected owners by playing Rick Astley on Youtube in their Tesla‘s😂
— David Colombo (@david_colombo_) January 11, 2022
When asked if he could take over the wheels on Twitter, David responded
No, I can not intervene with someone driving (other than starting music at max volume or flashing lights) and I also can not drive these Tesla‘s remotely.