Tesla customers might love the carmakers’ nifty keyless entry system, but one cybersecurity researcher has demonstrated how the same technology could allow thieves to drive off with certain models of the electric vehicles.
A hack effective on the Tesla Model 3 and Y cars would allow a thief to unlock a vehicle, start it and speed away, according to Sultan Qasim Khan, principal security consultant at the Manchester, UK-based security firm NCC Group. By redirecting communications between a car owner’s mobile phone, or key fob, and the car, outsiders can fool the entry system into thinking the owner is located physically near the vehicle.
The hack, Mr Khan said, isn’t specific to Tesla, though he demonstrated the technique to Bloomberg News on one of its car models. Rather, it’s the result of his tinkering with Tesla’s keyless entry system, which relies on what’s known as a Bluetooth Low Energy protocol.
There’s no evidence that thieves have used the hack to improperly access Tesla vehicles. The carmaker did not respond to a request for comment. NCC provided details of its findings to its clients in a note on Sunday, an official there said.
Mr Khan said he had disclosed the potential for attack to Tesla and that company officials did not deem the issue a significant risk. To fix it, the carmaker would need to alter its hardware and change its keyless entry system, Mr Khan said. The revelation comes after another security researcher, David Colombo, revealed a way of hijacking some functions on Tesla vehicles, such as opening and closing doors and controlling music volume.
BLE protocol was designed to conveniently link devices together over the internet, though it’s also emerged as method that hackers exploit to unlock smart technologies including house locks, cars, phones and laptops, Mr Khan said. NCC Group said it was able to conduct the attack on several other carmakers and technology companies’ devices.
Kwikset Kevo smart locks that use keyless systems with iPhone or Android phones are affected by the same issue, Mr Khan said. Kwikset said that customers who use an iPhone to access the lock can switch on two-factor authentication in lock app. An official also added that the iPhone-operated locks have a 30-second timeout, helping protect against intrusion.
Kwikset will be updating its Android app in “summer,” the company said.
“The security of Kwikset’s products is of utmost importance and we partner with well-known security companies to evaluate our products and continue to work with them to ensure we are delivering the highest security possible for our consumers,” an official said.
A representative at Bluetooth SIG, the collective of companies that manages the technology said: “The Bluetooth Special Interest Group prioritises security and the specifications include a collection of features that provide product developers the tools they need to secure communications between Bluetooth devices.
“The SIG also provides educational resources to the developer community to help them implement the appropriate level of security within their Bluetooth products, as well as a vulnerability response program that works with the security research community to address vulnerabilities identified within Bluetooth specifications in a responsible manner.”
Mr Khan has identified numerous vulnerabilities in NCC Group client products and is also the creator of Sniffle, the first open-source Bluetooth 5 sniffer. Sniffers can be used to track Bluetooth signals, helping identify devices. They are often used by government agencies that manage roadways to anonymously monitor drivers passing through urban areas.
A 2019 study by a British consumer group, Which, found that more than 200 car models were susceptible to keyless theft, using similar but slightly different attack methods such as spoofing wireless or radio signals.
In a demonstration to Bloomberg News, Mr Khan conducted a so-called relay attack, in which a hacker uses two small hardware devices that forward communications. To unlock the car, he placed one relay device within roughly 15 metres of the Tesla owner’s smartphone or key fob and a second, plugged into his laptop, near to the car.
The technology utilised custom computer code that Mr Khan had designed for Bluetooth development kits, which are sold online for less than $50.
The hardware needed, in addition to Mr Khan’s custom software, costs roughly $100 altogether and can be easily bought online. Once the relays are set up, the hack takes just “10 seconds,” Mr Khan said.
“An attacker could walk up to any home at night — if the owner’s phone is at home — with a Bluetooth passive entry car parked outside and use this attack to unlock and start the car,” he said.
“Once the device is in place near the fob or phone, the attacker can send commands from anywhere in the world.”
Dengue%20fever%20symptoms
%3Cp%3EHigh%20fever%20(40%C2%B0C%2F104%C2%B0F)%3Cbr%3ESevere%20headache%3Cbr%3EPain%20behind%20the%20eyes%3Cbr%3EMuscle%20and%20joint%20pains%3Cbr%3ENausea%3Cbr%3EVomiting%3Cbr%3ESwollen%20glands%3Cbr%3ERash%26nbsp%3B%3C%2Fp%3E%0A
Groom and Two Brides
Director: Elie Semaan
Starring: Abdullah Boushehri, Laila Abdallah, Lulwa Almulla
Rating: 3/5
How to get there
Emirates (www.emirates.com) flies directly to Hanoi, Vietnam, with fares starting from around Dh2,725 return, while Etihad (www.etihad.com) fares cost about Dh2,213 return with a stop. Chuong is 25 kilometres south of Hanoi.
Seven tips from Emirates NBD
1. Never respond to e-mails, calls or messages asking for account, card or internet banking details
2. Never store a card PIN (personal identification number) in your mobile or in your wallet
3. Ensure online shopping websites are secure and verified before providing card details
4. Change passwords periodically as a precautionary measure
5. Never share authentication data such as passwords, card PINs and OTPs (one-time passwords) with third parties
6. Track bank notifications regarding transaction discrepancies
7. Report lost or stolen debit and credit cards immediately
Why the Tourist Club?
Originally, The Club (which many people chose to call the “British Club”) was the only place where one could use the beach with changing rooms and a shower, and get refreshments.
In the early 1970s, the Government of Abu Dhabi wanted to give more people a place to get together on the beach, with some facilities for children. The place chosen was where the annual boat race was held, which Sheikh Zayed always attended and which brought crowds of locals and expatriates to the stretch of beach to the left of Le Méridien and the Marina.
It started with a round two-storey building, erected in about two weeks by Orient Contracting for Sheikh Zayed to use at one these races. Soon many facilities were planned and built, and members were invited to join.
Why it was called “Nadi Al Siyahi” is beyond me. But it is likely that one wanted to convey the idea that this was open to all comers. Because there was no danger of encountering alcohol on the premises, unlike at The Club, it was a place in particular for the many Arab expatriate civil servants to join. Initially the fees were very low and membership was offered free to many people, too.
Eventually there was a skating rink, bowling and many other amusements.
Frauke Heard-Bey is a historian and has lived in Abu Dhabi since 1968.
Sole survivors
- Cecelia Crocker was on board Northwest Airlines Flight 255 in 1987 when it crashed in Detroit, killing 154 people, including her parents and brother. The plane had hit a light pole on take off
- George Lamson Jr, from Minnesota, was on a Galaxy Airlines flight that crashed in Reno in 1985, killing 68 people. His entire seat was launched out of the plane
- Bahia Bakari, then 12, survived when a Yemenia Airways flight crashed near the Comoros in 2009, killing 152. She was found clinging to wreckage after floating in the ocean for 13 hours.
- Jim Polehinke was the co-pilot and sole survivor of a 2006 Comair flight that crashed in Lexington, Kentucky, killing 49.
Who's who in Yemen conflict
Houthis: Iran-backed rebels who occupy Sanaa and run unrecognised government
Yemeni government: Exiled government in Aden led by eight-member Presidential Leadership Council
Southern Transitional Council: Faction in Yemeni government that seeks autonomy for the south
Habrish 'rebels': Tribal-backed forces feuding with STC over control of oil in government territory
The specs
Engine: 2.9-litre twin-turbo V6
Power: 540hp at 6,500rpm
Torque: 600Nm at 2,500rpm
Transmission: Eight-speed auto
Kerb weight: 1580kg
Price: From Dh750k
On sale: via special order
MEDIEVIL%20(1998)
%3Cp%3E%3Cstrong%3EDeveloper%3A%3C%2Fstrong%3E%20SCE%20Studio%20Cambridge%3Cbr%3E%3Cstrong%3EPublisher%3A%3C%2Fstrong%3E%20Sony%20Computer%20Entertainment%3Cbr%3E%3Cstrong%3EConsole%3A%3C%2Fstrong%3E%20PlayStation%2C%20PlayStation%204%20and%205%3Cbr%3E%3Cstrong%3ERating%3A%3C%2Fstrong%3E%203.5%2F5%3C%2Fp%3E%0A
David Haye record
Total fights: 32
Wins: 28
Wins by KO: 26
Losses: 4
Moon Music
Artist: Coldplay
Label: Parlophone/Atlantic
Number of tracks: 10
Rating: 3/5
Company profile
Name: Oulo.com
Founder: Kamal Nazha
Based: Dubai
Founded: 2020
Number of employees: 5
Sector: Technology
Funding: $450,000
Step by step
2070km to run
38 days
273,600 calories consumed
28kg of fruit
40kg of vegetables
45 pairs of running shoes
1 yoga matt
1 oxygen chamber
2019 ASIAN CUP FINAL
Japan v Qatar
Friday, 6pm
Zayed Sports City Stadium, Abu Dhabi
Our family matters legal consultant
Name: Hassan Mohsen Elhais
Position: legal consultant with Al Rowaad Advocates and Legal Consultants.
The advice provided in our columns does not constitute legal advice and is provided for information only. Readers are encouraged to seek independent legal advice.
The alternatives
• Founded in 2014, Telr is a payment aggregator and gateway with an office in Silicon Oasis. It’s e-commerce entry plan costs Dh349 monthly (plus VAT). QR codes direct customers to an online payment page and merchants can generate payments through messaging apps.
• Business Bay’s Pallapay claims 40,000-plus active merchants who can invoice customers and receive payment by card. Fees range from 1.99 per cent plus Dh1 per transaction depending on payment method and location, such as online or via UAE mobile.
• Tap started in May 2013 in Kuwait, allowing Middle East businesses to bill, accept, receive and make payments online “easier, faster and smoother” via goSell and goCollect. It supports more than 10,000 merchants. Monthly fees range from US$65-100, plus card charges of 2.75-3.75 per cent and Dh1.2 per sale.
• 2checkout’s “all-in-one payment gateway and merchant account” accepts payments in 200-plus markets for 2.4-3.9 per cent, plus a Dh1.2-Dh1.8 currency conversion charge. The US provider processes online shop and mobile transactions and has 17,000-plus active digital commerce users.
• PayPal is probably the best-known online goods payment method - usually used for eBay purchases - but can be used to receive funds, providing everyone’s signed up. Costs from 2.9 per cent plus Dh1.2 per transaction.
Ten tax points to be aware of in 2026
1. Domestic VAT refund amendments: request your refund within five years
If a business does not apply for the refund on time, they lose their credit.
2. E-invoicing in the UAE
Businesses should continue preparing for the implementation of e-invoicing in the UAE, with 2026 a preparation and transition period ahead of phased mandatory adoption.
3. More tax audits
Tax authorities are increasingly using data already available across multiple filings to identify audit risks.
4. More beneficial VAT and excise tax penalty regime
Tax disputes are expected to become more frequent and more structured, with clearer administrative objection and appeal processes. The UAE has adopted a new penalty regime for VAT and excise disputes, which now mirrors the penalty regime for corporate tax.
5. Greater emphasis on statutory audit
There is a greater need for the accuracy of financial statements. The International Financial Reporting Standards standards need to be strictly adhered to and, as a result, the quality of the audits will need to increase.
6. Further transfer pricing enforcement
Transfer pricing enforcement, which refers to the practice of establishing prices for internal transactions between related entities, is expected to broaden in scope. The UAE will shortly open the possibility to negotiate advance pricing agreements, or essentially rulings for transfer pricing purposes.
7. Limited time periods for audits
Recent amendments also introduce a default five-year limitation period for tax audits and assessments, subject to specific statutory exceptions. While the standard audit and assessment period is five years, this may be extended to up to 15 years in cases involving fraud or tax evasion.
8. Pillar 2 implementation
Many multinational groups will begin to feel the practical effect of the Domestic Minimum Top-Up Tax (DMTT), the UAE's implementation of the OECD’s global minimum tax under Pillar 2. While the rules apply for financial years starting on or after January 1, 2025, it is 2026 that marks the transition to an operational phase.
9. Reduced compliance obligations for imported goods and services
Businesses that apply the reverse-charge mechanism for VAT purposes in the UAE may benefit from reduced compliance obligations.
10. Substance and CbC reporting focus
Tax authorities are expected to continue strengthening the enforcement of economic substance and Country-by-Country (CbC) reporting frameworks. In the UAE, these regimes are increasingly being used as risk-assessment tools, providing tax authorities with a comprehensive view of multinational groups’ global footprints and enabling them to assess whether profits are aligned with real economic activity.
Contributed by Thomas Vanhee and Hend Rashwan, Aurifer
The Farewell
Director: Lulu Wang
Stars: Awkwafina, Zhao Shuzhen, Diana Lin, Tzi Ma
Four stars
