Tesla customers might love the carmakers’ nifty keyless entry system, but one cybersecurity researcher has demonstrated how the same technology could allow thieves to drive off with certain models of the electric vehicles.
A hack effective on the Tesla Model 3 and Y cars would allow a thief to unlock a vehicle, start it and speed away, according to Sultan Qasim Khan, principal security consultant at the Manchester, UK-based security firm NCC Group. By redirecting communications between a car owner’s mobile phone, or key fob, and the car, outsiders can fool the entry system into thinking the owner is located physically near the vehicle.
The hack, Mr Khan said, isn’t specific to Tesla, though he demonstrated the technique to Bloomberg News on one of its car models. Rather, it’s the result of his tinkering with Tesla’s keyless entry system, which relies on what’s known as a Bluetooth Low Energy protocol.
There’s no evidence that thieves have used the hack to improperly access Tesla vehicles. The carmaker did not respond to a request for comment. NCC provided details of its findings to its clients in a note on Sunday, an official there said.
Mr Khan said he had disclosed the potential for attack to Tesla and that company officials did not deem the issue a significant risk. To fix it, the carmaker would need to alter its hardware and change its keyless entry system, Mr Khan said. The revelation comes after another security researcher, David Colombo, revealed a way of hijacking some functions on Tesla vehicles, such as opening and closing doors and controlling music volume.
BLE protocol was designed to conveniently link devices together over the internet, though it’s also emerged as method that hackers exploit to unlock smart technologies including house locks, cars, phones and laptops, Mr Khan said. NCC Group said it was able to conduct the attack on several other carmakers and technology companies’ devices.
Kwikset Kevo smart locks that use keyless systems with iPhone or Android phones are affected by the same issue, Mr Khan said. Kwikset said that customers who use an iPhone to access the lock can switch on two-factor authentication in lock app. An official also added that the iPhone-operated locks have a 30-second timeout, helping protect against intrusion.
Kwikset will be updating its Android app in “summer,” the company said.
“The security of Kwikset’s products is of utmost importance and we partner with well-known security companies to evaluate our products and continue to work with them to ensure we are delivering the highest security possible for our consumers,” an official said.
A representative at Bluetooth SIG, the collective of companies that manages the technology said: “The Bluetooth Special Interest Group prioritises security and the specifications include a collection of features that provide product developers the tools they need to secure communications between Bluetooth devices.
“The SIG also provides educational resources to the developer community to help them implement the appropriate level of security within their Bluetooth products, as well as a vulnerability response program that works with the security research community to address vulnerabilities identified within Bluetooth specifications in a responsible manner.”
Mr Khan has identified numerous vulnerabilities in NCC Group client products and is also the creator of Sniffle, the first open-source Bluetooth 5 sniffer. Sniffers can be used to track Bluetooth signals, helping identify devices. They are often used by government agencies that manage roadways to anonymously monitor drivers passing through urban areas.
A 2019 study by a British consumer group, Which, found that more than 200 car models were susceptible to keyless theft, using similar but slightly different attack methods such as spoofing wireless or radio signals.
In a demonstration to Bloomberg News, Mr Khan conducted a so-called relay attack, in which a hacker uses two small hardware devices that forward communications. To unlock the car, he placed one relay device within roughly 15 metres of the Tesla owner’s smartphone or key fob and a second, plugged into his laptop, near to the car.
The technology utilised custom computer code that Mr Khan had designed for Bluetooth development kits, which are sold online for less than $50.
The hardware needed, in addition to Mr Khan’s custom software, costs roughly $100 altogether and can be easily bought online. Once the relays are set up, the hack takes just “10 seconds,” Mr Khan said.
“An attacker could walk up to any home at night — if the owner’s phone is at home — with a Bluetooth passive entry car parked outside and use this attack to unlock and start the car,” he said.
“Once the device is in place near the fob or phone, the attacker can send commands from anywhere in the world.”
Lexus LX700h specs
Engine: 3.4-litre twin-turbo V6 plus supplementary electric motor
Power: 464hp at 5,200rpm
Torque: 790Nm from 2,000-3,600rpm
Transmission: 10-speed auto
Fuel consumption: 11.7L/100km
On sale: Now
Price: From Dh590,000
Mobile phone packages comparison
'I Want You Back'
Director:Jason Orley
Stars:Jenny Slate, Charlie Day
Rating:4/5
'Champions'
Director: Manuel Calvo
Stars: Yassir Al Saggaf and Fatima Al Banawi
Rating: 2/5
The five pillars of Islam
TO A LAND UNKNOWN
Director: Mahdi Fleifel
Starring: Mahmoud Bakri, Aram Sabbah, Mohammad Alsurafa
Rating: 4.5/5
Tamkeen's offering
- Option 1: 70% in year 1, 50% in year 2, 30% in year 3
- Option 2: 50% across three years
- Option 3: 30% across five years
UAE currency: the story behind the money in your pockets
Kibsons%20Cares
%3Cp%3E%3Cstrong%3ERecycling%3Cbr%3E%3C%2Fstrong%3EAny%20time%20you%20receive%20a%20Kibsons%20order%2C%20you%20can%20return%20your%20cardboard%20box%20to%20the%20drivers.%20They%E2%80%99ll%20be%20happy%20to%20take%20it%20off%20your%20hands%20and%20ensure%20it%20gets%20reused%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EKind%20to%20health%20and%20planet%3C%2Fstrong%3E%3Cbr%3ESolar%20%E2%80%93%2025-50%25%20of%20electricity%20saved%3Cbr%3EWater%20%E2%80%93%2075%25%20of%20water%20reused%3Cbr%3EBiofuel%20%E2%80%93%20Kibsons%20fleet%20to%20get%2020%25%20more%20mileage%20per%20litre%20with%20biofuel%20additives%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3ESustainable%20grocery%20shopping%3C%2Fstrong%3E%3Cbr%3ENo%20antibiotics%3Cbr%3ENo%20added%20hormones%3Cbr%3ENo%20GMO%3Cbr%3ENo%20preservatives%3Cbr%3EMSG%20free%3Cbr%3E100%25%20natural%3C%2Fp%3E%0A
Timeline
2012-2015
The company offers payments/bribes to win key contracts in the Middle East
May 2017
The UK SFO officially opens investigation into Petrofac’s use of agents, corruption, and potential bribery to secure contracts
September 2021
Petrofac pleads guilty to seven counts of failing to prevent bribery under the UK Bribery Act
October 2021
Court fines Petrofac £77 million for bribery. Former executive receives a two-year suspended sentence
December 2024
Petrofac enters into comprehensive restructuring to strengthen the financial position of the group
May 2025
The High Court of England and Wales approves the company’s restructuring plan
July 2025
The Court of Appeal issues a judgment challenging parts of the restructuring plan
August 2025
Petrofac issues a business update to execute the restructuring and confirms it will appeal the Court of Appeal decision
October 2025
Petrofac loses a major TenneT offshore wind contract worth €13 billion. Holding company files for administration in the UK. Petrofac delisted from the London Stock Exchange
November 2025
180 Petrofac employees laid off in the UAE
MATCH INFO
Brescia 1 (Skrinia og, 76)
Inter Milan 2 (Martinez 33, Lukaku 63)
2017%20RESULTS%3A%20FRENCH%20VOTERS%20IN%20UK
%3Cp%3E%3Cstrong%3EFirst%20round%3C%2Fstrong%3E%3Cbr%3EEmmanuel%20Macron%3A%2051.1%25%3Cbr%3EFrancois%20Fillon%3A%2024.2%25%3Cbr%3EJean-Luc%20Melenchon%3A%2011.8%25%3Cbr%3EBenoit%20Hamon%3A%207.0%25%3Cbr%3EMarine%20Le%20Pen%3A%202.9%25%3Cbr%3E%3Cbr%3E%3Cstrong%3ESecond%20round%3C%2Fstrong%3E%3Cbr%3EEmmanuel%20Macron%3A%2095.1%25%3Cbr%3EMarine%20Le%20Pen%3A%204.9%25%26nbsp%3B%3C%2Fp%3E%0A
Mercedes-AMG GT 63 S E Performance: the specs
Engine: 4.0-litre twin-turbo V8 plus rear-mounted electric motor
Power: 843hp at N/A rpm
Torque: 1470Nm N/A rpm
Transmission: 9-speed auto
Fuel consumption: 8.6L/100km
On sale: October to December
Price: From Dh875,000 (estimate)
UAE squad
Esha Oza (captain), Al Maseera Jahangir, Emily Thomas, Heena Hotchandani, Indhuja Nandakumar, Katie Thompson, Lavanya Keny, Mehak Thakur, Michelle Botha, Rinitha Rajith, Samaira Dharnidharka, Siya Gokhale, Sashikala Silva, Suraksha Kotte, Theertha Satish (wicketkeeper) Udeni Kuruppuarachchige, Vaishnave Mahesh.
UAE tour of Zimbabwe
All matches in Bulawayo
Friday, Sept 26 – First ODI
Sunday, Sept 28 – Second ODI
Tuesday, Sept 30 – Third ODI
Thursday, Oct 2 – Fourth ODI
Sunday, Oct 5 – First T20I
Monday, Oct 6 – Second T20I
Killing of Qassem Suleimani
Who's who in Yemen conflict
Houthis: Iran-backed rebels who occupy Sanaa and run unrecognised government
Yemeni government: Exiled government in Aden led by eight-member Presidential Leadership Council
Southern Transitional Council: Faction in Yemeni government that seeks autonomy for the south
Habrish 'rebels': Tribal-backed forces feuding with STC over control of oil in government territory
GIANT REVIEW
Starring: Amir El-Masry, Pierce Brosnan
Director: Athale
Rating: 4/5
Some of Darwish's last words
"They see their tomorrows slipping out of their reach. And though it seems to them that everything outside this reality is heaven, yet they do not want to go to that heaven. They stay, because they are afflicted with hope." - Mahmoud Darwish, to attendees of the Palestine Festival of Literature, 2008
His life in brief: Born in a village near Galilee, he lived in exile for most of his life and started writing poetry after high school. He was arrested several times by Israel for what were deemed to be inciteful poems. Most of his work focused on the love and yearning for his homeland, and he was regarded the Palestinian poet of resistance. Over the course of his life, he published more than 30 poetry collections and books of prose, with his work translated into more than 20 languages. Many of his poems were set to music by Arab composers, most significantly Marcel Khalife. Darwish died on August 9, 2008 after undergoing heart surgery in the United States. He was later buried in Ramallah where a shrine was erected in his honour.
The biog
Favourite pet: cats. She has two: Eva and Bito
Favourite city: Cape Town, South Africa
Hobby: Running. "I like to think I’m artsy but I’m not".
Favourite move: Romantic comedies, specifically Return to me. "I cry every time".
Favourite spot in Abu Dhabi: Saadiyat beach
The biog
Hometown: Cairo
Age: 37
Favourite TV series: The Handmaid’s Tale, Black Mirror
Favourite anime series: Death Note, One Piece and Hellsing
Favourite book: Designing Brand Identity, Fifth Edition
Company profile
Name: Thndr
Started: October 2020
Founders: Ahmad Hammouda and Seif Amr
Based: Cairo, Egypt
Sector: FinTech
Initial investment: pre-seed of $800,000
Funding stage: series A; $20 million
Investors: Tiger Global, Beco Capital, Prosus Ventures, Y Combinator, Global Ventures, Abdul Latif Jameel, Endure Capital, 4DX Ventures, Plus VC, Rabacap and MSA Capital
Top Hundred overseas picks
London Spirit: Kieron Pollard, Riley Meredith
Welsh Fire: Adam Zampa, David Miller, Naseem Shah
Manchester Originals: Andre Russell, Wanindu Hasaranga, Sean Abbott
Northern Superchargers: Dwayne Bravo, Wahab Riaz
Oval Invincibles: Sunil Narine, Rilee Rossouw
Trent Rockets: Colin Munro
Birmingham Phoenix: Matthew Wade, Kane Richardson
Southern Brave: Quinton de Kock
In numbers
Number of Chinese tourists coming to UAE in 2017 was... 1.3m
Alibaba’s new ‘Tech Town’ in Dubai is worth... $600m
China’s investment in the MIddle East in 2016 was... $29.5bn
The world’s most valuable start-up in 2018, TikTok, is valued at... $75bn
Boost to the UAE economy of 5G connectivity will be... $269bn
PROVISIONAL FIXTURE LIST
Premier League
Wednesday, June 17 (Kick-offs uae times) Aston Villa v Sheffield United 9pm; Manchester City v Arsenal 11pm
Friday, June 19 Norwich v Southampton 9pm; Tottenham v Manchester United 11pm
Saturday, June 20 Watford v Leicester 3.30pm; Brighton v Arsenal 6pm; West Ham v Wolves 8.30pm; Bournemouth v Crystal Palace 10.45pm
Sunday, June 21 Newcastle v Sheffield United 2pm; Aston Villa v Chelsea 7.30pm; Everton v Liverpool 10pm
Monday, June 22 Manchester City v Burnley 11pm (Sky)
Tuesday, June 23 Southampton v Arsenal 9pm; Tottenham v West Ham 11.15pm
Wednesday, June 24 Manchester United v Sheffield United 9pm; Newcastle v Aston Villa 9pm; Norwich v Everton 9pm; Liverpool v Crystal Palace 11.15pm
Thursday, June 25 Burnley v Watford 9pm; Leicester v Brighton 9pm; Chelsea v Manchester City 11.15pm; Wolves v Bournemouth 11.15pm
Sunday June 28 Aston Villa vs Wolves 3pm; Watford vs Southampton 7.30pm
Monday June 29 Crystal Palace vs Burnley 11pm
Tuesday June 30 Brighton vs Manchester United 9pm; Sheffield United vs Tottenham 11.15pm
Wednesday July 1 Bournemouth vs Newcastle 9pm; Everton vs Leicester 9pm; West Ham vs Chelsea 11.15pm
Thursday July 2 Arsenal vs Norwich 9pm; Manchester City vs Liverpool 11.15pm
The specs
Price: From Dh529,000
Engine: 5-litre V8
Transmission: Eight-speed auto
Power: 520hp
Torque: 625Nm
Fuel economy, combined: 12.8L/100km
The%20US%20Congress%20explained
%3Cp%3E-%20Congress%20is%20one%20of%20three%20branches%20of%20the%20US%20government%2C%20and%20the%20one%20that%20creates%20the%20nation's%20federal%20laws%3C%2Fp%3E%0A%3Cp%3E-%20Congress%20is%20divided%20into%20two%20chambers%3A%20The%20House%20of%20Representatives%20and%20the%20Senate%3C%2Fp%3E%0A%3Cp%3E-%C2%A0The%20House%20is%20made%20up%20of%20435%20members%20based%20on%20a%20state's%20population.%20House%20members%20are%20up%20for%20election%20every%20two%20years%3C%2Fp%3E%0A%3Cp%3E-%20A%20bill%20must%20be%20approved%20by%20both%20the%20House%20and%20Senate%20before%20it%20goes%20to%20the%20president's%20desk%20for%20signature%3C%2Fp%3E%0A%3Cp%3E-%20A%20political%20party%20needs%20218%20seats%20to%20be%20in%20control%20of%20the%20House%20of%20Representatives%3C%2Fp%3E%0A%3Cp%3E-%20The%20Senate%20is%20comprised%20of%20100%20members%2C%20with%20each%20state%20receiving%20two%20senators.%20Senate%20members%20serve%20six-year%20terms%3C%2Fp%3E%0A%3Cp%3E-%20A%20political%20party%20needs%2051%20seats%20to%20control%20the%20Senate.%20In%20the%20case%20of%20a%2050-50%20tie%2C%20the%20party%20of%20the%20president%20controls%20the%20Senate%3C%2Fp%3E%0A
START-UPS%20IN%20BATCH%204%20OF%20SANABIL%20500'S%20ACCELERATOR%20PROGRAMME
%3Cp%3E%3Cstrong%3ESaudi%20Arabia%3C%2Fstrong%3E%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EJoy%3A%3C%2Fstrong%3E%20Delivers%20car%20services%20with%20affordable%20prices%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EKaraz%3A%3C%2Fstrong%3E%20Helps%20diabetics%20with%20gamification%2C%20IoT%20and%20real-time%20data%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EMedicarri%3A%3C%2Fstrong%3E%20Medical%20marketplace%20that%20connects%20clinics%20with%20suppliers%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EMod5r%3C%2Fstrong%3E%3A%20Makes%20automated%20and%20recurring%20investments%20to%20grow%20wealth%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EStuck%3A%3C%2Fstrong%3E%20Live%2C%20on-demand%20language%20support%20to%20boost%20writing%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EWalzay%3A%3C%2Fstrong%3E%20Helps%20in%20recruitment%20while%20reducing%20hiring%20time%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EUAE%3C%2Fstrong%3E%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EEighty6%3A%20%3C%2Fstrong%3EMarketplace%20for%20restaurant%20and%20supplier%20procurements%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EFarmUnboxed%3A%20%3C%2Fstrong%3EHelps%20digitise%20international%20food%20supply%20chain%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3ENutriCal%3A%3C%2Fstrong%3E%20Helps%20F%26amp%3BB%20businesses%20and%20governments%20with%20nutritional%20analysis%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EWellxai%3A%3C%2Fstrong%3E%20Provides%20insurance%20that%20enables%20and%20rewards%20user%20habits%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EEgypt%3C%2Fstrong%3E%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EAmwal%3A%3C%2Fstrong%3E%20A%20Shariah-compliant%20crowd-lending%20platform%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EDeben%3A%3C%2Fstrong%3E%20Helps%20CFOs%20manage%20cash%20efficiently%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EEgab%3A%3C%2Fstrong%3E%20Connects%20media%20outlets%20to%20journalists%20in%20hard-to-reach%20areas%20for%20exclusives%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3ENeqabty%3A%3C%2Fstrong%3E%20Digitises%20financial%20and%20medical%20services%20of%20labour%20unions%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EOman%3C%2Fstrong%3E%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EMonak%3A%3C%2Fstrong%3E%20Provides%20financial%20inclusion%20and%20life%20services%20to%20migrants%3C%2Fp%3E%0A
The%20specs%3A%202024%20Mercedes%20E200
%3Cp%3E%3Cstrong%3EEngine%3A%20%3C%2Fstrong%3E2.0-litre%20four-cyl%20turbo%20%2B%20mild%20hybrid%0D%3Cbr%3E%3Cstrong%3EPower%3A%20%3C%2Fstrong%3E204hp%20at%205%2C800rpm%20%2B23hp%20hybrid%20boost%0D%3Cbr%3E%3Cstrong%3ETorque%3A%20%3C%2Fstrong%3E320Nm%20at%201%2C800rpm%20%2B205Nm%20hybrid%20boost%0D%3Cbr%3E%3Cstrong%3ETransmission%3A%20%3C%2Fstrong%3E9-speed%20auto%0D%3Cbr%3E%3Cstrong%3EFuel%20consumption%3A%20%3C%2Fstrong%3E7.3L%2F100km%0D%3Cbr%3E%3Cstrong%3EOn%20sale%3A%20%3C%2Fstrong%3ENovember%2FDecember%0D%3Cbr%3E%3Cstrong%3EPrice%3A%20%3C%2Fstrong%3EFrom%20Dh205%2C000%20(estimate)%3C%2Fp%3E%0A
RESULTS
Bantamweight:
Zia Mashwani (PAK) bt Chris Corton (PHI)
Super lightweight:
Flavio Serafin (BRA) bt Mohammad Al Khatib (JOR)
Super lightweight:
Dwight Brooks (USA) bt Alex Nacfur (BRA)
Bantamweight:
Tariq Ismail (CAN) bt Jalal Al Daaja (JOR)
Featherweight:
Abdullatip Magomedov (RUS) bt Sulaiman Al Modhyan (KUW)
Middleweight:
Mohammad Fakhreddine (LEB) bt Christofer Silva (BRA)
Middleweight:
Rustam Chsiev (RUS) bt Tarek Suleiman (SYR)
Welterweight:
Khamzat Chimaev (SWE) bt Mzwandile Hlongwa (RSA)
Lightweight:
Alex Martinez (CAN) bt Anas Siraj Mounir (MAR)
Welterweight:
Jarrah Al Selawi (JOR) bt Abdoul Abdouraguimov (FRA)
DIVINE%20INTERVENTOIN
%3Cp%3EStarring%3A%20Elia%20Suleiman%2C%20Manal%20Khader%2C%20Amer%20Daher%3C%2Fp%3E%0A%3Cp%3EDirector%3A%20Elia%20Suleiman%3C%2Fp%3E%0A%3Cp%3ERating%3A%204.5%2F5%3C%2Fp%3E%0A
'Skin'
Dir: Guy Nattiv
Starring: Jamie Bell, Danielle McDonald, Bill Camp, Vera Farmiga
Rating: 3.5/5 stars
Where to apply
Applicants should send their completed applications - CV, covering letter, sample(s) of your work, letter of recommendation - to Nick March, Assistant Editor in Chief at The National and UAE programme administrator for the Rosalynn Carter Fellowships for Mental Health Journalism, by 5pm on April 30, 2020.
Please send applications to nmarch@thenational.ae and please mark the subject line as “Rosalynn Carter Fellowship for Mental Health Journalism (UAE programme application)”.
The local advisory board will consider all applications and will interview a short list of candidates in Abu Dhabi in June 2020. Successful candidates will be informed before July 30, 2020.
