I hacked these Teslas
Вставка
- Опубліковано 29 вер 2024
- Thank you to my friends at StandardFleet for helping me document this vulnerability and thank you to Tesla for moving quickly to resolve it.
Check out the Bug Bounty Program timeline of events: bugcrowd.com/d...
#Tesla #Hacked #Security
---
/ klwtts
/ klwtts
/ klwtts
kilowatt.media/
---
The Kilowatts | @KLWTTS
awesome, and yeah 300$ seems kinda shot in the arm. $1000-2000 would of been easy for this level of issue. Also they should give you options on payout - unless they do already? Like supercharging miles that don't expire for the value or FSD subscription credit, store credit, or pay out.
Never stop sharing, I'll always be watching!!! Do what the pros do - Promo sm!!
Great work, Ryan. I was happy to hear you sent the video to Tesla first, before posting on your channel. Could have been a lot of Teslas missing! And yes, def worth more than $300
MSNBC would pay far more just to get to show how easy Tesla's are to hack.
This is WILD
Glad you reported to Tesla instead of just stealing a ton of cars 😂
Por qué no los dos?
@@KLWTTS 💀
I think the reason they haven't opted for a higher payout is because the additional driver option is probably not used that often in practice for actual strangers (except your use case)
and you have to have actual knowledge of the bug to even attempt this.
So in practice it probably was a smaller concern overall, but nevertheless an important find.
Thanks for reporting this and having it fixed. I hope the dinner was good :D
Wow I think there are quite a few happy owners, knowing this is solved, who combined would tip far more than those 300 bucks…
Agreed, maybe they will revisit that number now that this video is out, but for what it’s worth our Venmo @KLWTTS is open 👍😅
That is a crazy vulnerability and should have been caught with very basic penetration testing procedures. Good for you for following through and getting it taken care of.
Damn $300 for a bug of this magnitude? Can you say cheapskate! Shame Tesla. Nice find though!
We miss you Ryan. When you get released from jail for grand theft auto, we hope you will make more videos.
What a great video! Thanks for your effort!
I'm kind of surprised they don't have granular feature controls for individual users. The owner should have full rights and can grant/deny permission for anything controllable to anyone they let use the car. Would let fleet management and guest access be a little more secure and safe.
This is why I’ve asked Elon if I can help develop Renter Mode
Excellent work Ryan! For all Tesla owners concerned this issue might affect them, Ryan explains in the video that the fix is on Tesla’s back end server, so the issue is fixed for every Tesla owner, irrespective of software version in the car. 🙌🏼
That fact alone is kinda awesome. I wouldn’t have guessed it could be solved so easily
Fantastic video. Well done, and your time is worth so much more. Bug bounty programs need to offer more incentive than exploiting vulnerabilities.
Met your parents at the airport. They’re very proud of you! Happy to subscribe.
Giving a 3rd party uncontrolled access to your vehicle is a bad idea…
…who knew? 🤡
…And now, it is controlled as you would expect it to be!
Damn $300 is nothing wtf. I was guessing maybe 6k minimum
Yeah, I’m hoping they revisit the reward amount
ryan strikes again
Good on you to bring this to Tesla, everyone should take the initiative when they find security issues ASAP. Tesla the reward did not justify the severity of this security issue, bad on you!
Wow!! 😮
I’ve been reporting a bug for over a year now, but to the AP engineers. I’ll try the bounty program. I forgot about it.
Awesome! You’ll have to let us know if they accept it and if you get paid for reporting it!
I've wondered now that Tesla has gone to "vision only", what if an IPAD was placed over the camera outside with it's own video playing? I'm sure it would need to be recorded at similar distances and angle perspectives to what it normally sees, but would it fool the car into thinking the environment ahead is clear when its not (or vise versa)?
2:09 whats that in the car in the front door next to the chair?
How long did it take to produce this video from idea to post?
$300 for this is a joke.
Great work Ryan!
Master Detective! 🕵️ Nice find 💪
Well done!!!
new sub
Good job
Nice job with the find on this one!