PHEV alarm can be switched off using hacked wifi [merged]

Mitsubishi Outlander PHEV Forum

Help Support Mitsubishi Outlander PHEV Forum:

This site may earn a commission from merchant affiliate links, including eBay, Amazon, and others.
http://www.theverge.com/2016/6/6/11872540/mitsubishi-outlander-connected-car-hack-breach-wifi

Uh oh.
 
The funny thing about this whole hoo-ha is that the journalists do not realize that it is wholly unnecessary to go to the trouble of hacking the car to disable the alarm and open it...* The rest of the hack is just play-around-annoy-your-neighbour stuff.


*Get a signal amplifier @ 15 pounds, hide it under the car, get behind a bush in the neighbourhood, and as the owner opens the car store the amplified signal on your mobile phone. Use the phone to open the car.
If you can stand within 20 meters of the car unnoticed you don't even need the amplifier.

https://www.youtube.com/watch?v=U86P_ByfgY8
 
Now this is public knowledge, I've turned my car WIFI access point off, thing is, there's a ton of damage anyone could do to the car including updating the car's WiFi firmware, it's not just a case of disabling the alarm.

When I first set the car up I was disappointed that the password couldn't be modified, and I bet the format of the password is similar throughout. My letters/numbers were grouped in a specific non-random order, letters then numbers. If others are the same which I suspect is the case this reduces the cracking time by a considerable margin.
 
Well, it would not be real damage, would it? Should anybody do this - and it is equivalent to scratching somebodies car out of spite- you just need one call to your dealer and they will come out with their laptop and reinstall the firmware...

I think that this is just the media feeding paranoia.
 
What is so bad about somebody updating your WiFi firmware? Saves you the trouble ;)

Must say, in the Netherlands, we do not have the factory installed alarm systems. If any, we have aftermarket units that are not connected to the Wifi module (I do). I guess this is partly why we are so relaxed about it :idea:
 
icykale 2 PCS Car Polishing Pad Cleaning Tool, 7.9" x 4.1" Cleaning Brush + 6.3" x 3.1" Polisher Composite Pad Wheel Cutter, Multi-function Portable Accessory, Compatible with Most Cars (Red)
$13.63
icykale 2 PCS Car Polishing Pad Cleaning Tool, 7.9" x 4.1" Cleaning Brush + 6.3" x 3.1" Polisher Composite Pad Wheel Cutter, Multi-function Portable Accessory, Compatible with Most Cars (Red) icykale-Auto-US
Vinyl Wall Decal Electric Car Electrical Charging Station Vehicle Stickers Mural Large Decor (ig5368)
$21.99
Vinyl Wall Decal Electric Car Electrical Charging Station Vehicle Stickers Mural Large Decor (ig5368) WALLSTICKERS4EVER
Electric E-car Charging Station Electric Vehicle Drive CCS Combo 2 Supercharge eCars EV Electric Car Throw Pillow, 16x16, Multicolor
$24.99
Electric E-car Charging Station Electric Vehicle Drive CCS Combo 2 Supercharge eCars EV Electric Car Throw Pillow, 16x16, Multicolor Amazon.com
Ziciner 4 PCS Wool Polishing Buffing Pad, Polishing Buffing Wheel for Drill Buffer Attached with M14 Drill Adapter, Universal Accessories for Car Motorcycle Refrigerator Furniture Glass (6 Inch)
-11%
$8.89 $9.99
Ziciner 4 PCS Wool Polishing Buffing Pad, Polishing Buffing Wheel for Drill Buffer Attached with M14 Drill Adapter, Universal Accessories for Car Motorcycle Refrigerator Furniture Glass (6 Inch) Ziciner
I Brake For Charging Stations, Electric Vehicle Owner Stainless Steel Insulated Tumbler
$20.99
I Brake For Charging Stations, Electric Vehicle Owner Stainless Steel Insulated Tumbler Amazon.com
Car Fuse Puller Tool, Car Fuse Puller Extraction Tool, Plastic Car Fuses Remover, Fuses Maintenance Accessories for Car Automotive Boat Mini Standard Blade Fuse (6PCS)
-50%
$2.49 $4.99
Car Fuse Puller Tool, Car Fuse Puller Extraction Tool, Plastic Car Fuses Remover, Fuses Maintenance Accessories for Car Automotive Boat Mini Standard Blade Fuse (6PCS) Smilfuy
Sylvil 5 PCS Tire Contour Dressing Applicator Pads, Car Polishing Sponge Wax Buffing Pads, Automotive Tire Dressing Shine Sponge for Car Glass, Painted Steel, Porcelain and More (Normal)
-13%
$3.49 ($0.70 / Count) $3.99 ($0.80 / Count)
Sylvil 5 PCS Tire Contour Dressing Applicator Pads, Car Polishing Sponge Wax Buffing Pads, Automotive Tire Dressing Shine Sponge for Car Glass, Painted Steel, Porcelain and More (Normal) Sylvil
Reserved Parking EV Electrical Vehicle Only Charging Station Aluminum Metal 8"x12" Sign Plate
$10.39
Reserved Parking EV Electrical Vehicle Only Charging Station Aluminum Metal 8"x12" Sign Plate DYTRQW
Electric E-car Charging Station Electric Vehicle Drive CCS Combo 2 Supercharge eCars EV Electric Car Throw Pillow, 16x16, Multicolor
$24.99
Electric E-car Charging Station Electric Vehicle Drive CCS Combo 2 Supercharge eCars EV Electric Car Throw Pillow, 16x16, Multicolor Amazon.com
ESEWALAS 3Pcs Car Wax Applicator Pad,Microfiber Applicator Pad,Car Accessories Applicator Pads with Finger Pocket,4.95" Diameter Foam Applicator Pad for Car Truck Motorcycle Cleaning
$5.99 ($2.00 / Count)
ESEWALAS 3Pcs Car Wax Applicator Pad,Microfiber Applicator Pad,Car Accessories Applicator Pads with Finger Pocket,4.95" Diameter Foam Applicator Pad for Car Truck Motorcycle Cleaning Yvehicle
Augeny 2PCS Tire Dressing Applicator, Reusable Car Tire Shine Sponge Applicator Pad with Lid, Durable Foam Auto Wheel Detailing Applicator for Vehicle Waxing Polishing Cleaning (Yellow)
$6.29 ($3.14 / Count)
Augeny 2PCS Tire Dressing Applicator, Reusable Car Tire Shine Sponge Applicator Pad with Lid, Durable Foam Auto Wheel Detailing Applicator for Vehicle Waxing Polishing Cleaning (Yellow) Augeny
AZYT Floor Mats & Cargo Liner for Mitsubishi Outlander 2024 2023 2022 (Not for PHEV or Sport Models) All Weather Automotive TPE Liners Set Anti-Slip Waterproof Floor Liners Accessories
$155.99
AZYT Floor Mats & Cargo Liner for Mitsubishi Outlander 2024 2023 2022 (Not for PHEV or Sport Models) All Weather Automotive TPE Liners Set Anti-Slip Waterproof Floor Liners Accessories AZYT-US
KUST All Weather Floor Mats for 2011-2021 Mitsubishi Outlander Accessories (Not fit for Outlander Sport or PHEV Models) Custom Fit Floor Liners 1st & 2nd Row Car Mats Black Non-Slip
$88.88
KUST All Weather Floor Mats for 2011-2021 Mitsubishi Outlander Accessories (Not fit for Outlander Sport or PHEV Models) Custom Fit Floor Liners 1st & 2nd Row Car Mats Black Non-Slip KUST JAPAN
HAFIDI Floor Mats & Cargo Liner for Mitsubishi Outlander 2022-2024 (Not Fit PHEV or Sport Models) Custom Fit Full Set, All Weather Car Accessories (Rear Trunk Mat +Floor Mats)
$158.00
HAFIDI Floor Mats & Cargo Liner for Mitsubishi Outlander 2022-2024 (Not Fit PHEV or Sport Models) Custom Fit Full Set, All Weather Car Accessories (Rear Trunk Mat +Floor Mats) Dianyue
5/8"-11 Thread Angle Grinder Extension Shaft for Car Polisher,Angle Grinder Attachments Expand Connection of Buffering Pads and Angle Grinder,Universal Angle Grinder Extension
$6.77
5/8"-11 Thread Angle Grinder Extension Shaft for Car Polisher,Angle Grinder Attachments Expand Connection of Buffering Pads and Angle Grinder,Universal Angle Grinder Extension Jane Alexandre Dumas fils
AIPOIL® Floor Mats & Cargo Liner Custom for 2022-2024 Mitsubishi Outlander PHEV (Not for Sport Models) 丨TPE All Weather Protection Anti-Slip Automotive Floor Liners丨Full Set Accessories, Black.
$119.00
AIPOIL® Floor Mats & Cargo Liner Custom for 2022-2024 Mitsubishi Outlander PHEV (Not for Sport Models) 丨TPE All Weather Protection Anti-Slip Automotive Floor Liners丨Full Set Accessories, Black. Yamaxuan
Binmotor-Floor Mats Cargo Liner Set 2023 2024 Mitsubishi Outlander PHEV(Not for Gas Models) 丨1st & 2nd Row & Rear Cargo Mat, All Weather Mats Outlander PHEV(Plug-in Hybrid Vehicle) Accessories
$135.00
Binmotor-Floor Mats Cargo Liner Set 2023 2024 Mitsubishi Outlander PHEV(Not for Gas Models) 丨1st & 2nd Row & Rear Cargo Mat, All Weather Mats Outlander PHEV(Plug-in Hybrid Vehicle) Accessories Binmotuo
Dickno Tire Dressing Applicator, Car Tire Shine Dressing Applicator Pad with Lid, Auto Tire Wheel Waxing Polishing Sponge, Universal Wheel Shine Tool Accessories for Most Vehicles (Blue, Normal)
$4.49
Dickno Tire Dressing Applicator, Car Tire Shine Dressing Applicator Pad with Lid, Auto Tire Wheel Waxing Polishing Sponge, Universal Wheel Shine Tool Accessories for Most Vehicles (Blue, Normal) Dickno
icykale 5 PCS Car Felt Polishing Pad, 3" x 0.2" High Density Glass Polishing Tool for Repair Scratches Spot, Multi-Function Maintenance Accessory for Windshield Table, Universal for Cars Home (White)
$5.99
icykale 5 PCS Car Felt Polishing Pad, 3" x 0.2" High Density Glass Polishing Tool for Repair Scratches Spot, Multi-Function Maintenance Accessory for Windshield Table, Universal for Cars Home (White) icykale-Auto-US
ESEWALAS 12v USB Outlet, Quick Charge 3.0 Dual USB and PD USB C Socket Power Outlet with On Off Switch,12 Volt USB Charger Socket,Waterproof 12V/24V Fast Charge USB Port
$14.99 ($5.00 / Count)
ESEWALAS 12v USB Outlet, Quick Charge 3.0 Dual USB and PD USB C Socket Power Outlet with On Off Switch,12 Volt USB Charger Socket,Waterproof 12V/24V Fast Charge USB Port Yvehicle
xipoqix Cargo Liner Floor Mat Compatible with 22-24 Mitsubishi Outlander 7 Seat Back Seat Protector Cargo Mat Replacement for 22-24 Mitsubishi Outlander Accessories (Cargo Mat+Backrest Mat+Floor Mat)
$209.99
xipoqix Cargo Liner Floor Mat Compatible with 22-24 Mitsubishi Outlander 7 Seat Back Seat Protector Cargo Mat Replacement for 22-24 Mitsubishi Outlander Accessories (Cargo Mat+Backrest Mat+Floor Mat) xipoqix
HAFIDI Floor Mats & Cargo Liner for Mitsubishi Outlander PHEV 2023-2024 Custom Fit Full Set, All Weather Car Accessories
-5%
$113.51 $119.99
HAFIDI Floor Mats & Cargo Liner for Mitsubishi Outlander PHEV 2023-2024 Custom Fit Full Set, All Weather Car Accessories Dianyue
SIGNCHAT Electric Vehicle Charging Station Ev Reserved Spot Notice Metal Poster Wall Art Decor Tin Sign 8X12 Inches
$9.85
SIGNCHAT Electric Vehicle Charging Station Ev Reserved Spot Notice Metal Poster Wall Art Decor Tin Sign 8X12 Inches DUFANGQIMAIYIFU
Kutyun Car Soldering Pliers, Electrical Disconnect Pliers, Wire Clamp Tool with Swivel Flat Band, Multi-Function Wire Welding Clamp, Pick‑Up Aid Plier Hand Tools Fits for Auto Maintenance Repairing
$7.99
Kutyun Car Soldering Pliers, Electrical Disconnect Pliers, Wire Clamp Tool with Swivel Flat Band, Multi-Function Wire Welding Clamp, Pick‑Up Aid Plier Hand Tools Fits for Auto Maintenance Repairing Kutyun
Electric E-car Charging Station Electric Vehicle Supercharge-For E Driver EV Electric Car Throw Pillow, 16x16, Multicolor
$19.99
Electric E-car Charging Station Electric Vehicle Supercharge-For E Driver EV Electric Car Throw Pillow, 16x16, Multicolor Amazon.com
I Brake For Charging Stations, Electric Vehicle Owner Stainless Steel Insulated Tumbler
$20.99
I Brake For Charging Stations, Electric Vehicle Owner Stainless Steel Insulated Tumbler Amazon.com
Powerty Cargo Mat Custom Fit for Mitsubishi Outlander 2022-2024 Accessories Cargo Liner Behind 2nd Row Rear Trunk Mat (Not for PHEV or Sport Models)
-6%
$59.99 $63.99
Powerty Cargo Mat Custom Fit for Mitsubishi Outlander 2022-2024 Accessories Cargo Liner Behind 2nd Row Rear Trunk Mat (Not for PHEV or Sport Models) Powerty-US
Auxko All Weather Floor Mats Fit for Mitsubishi Outlander 2022 2023 2024(Not phev or Sport) TPE Rubber Liners Outlander Accessories All Season Guard Odorless Anti-Slip Floor Mats 3 Row
-25%
$79.99 $106.29
Auxko All Weather Floor Mats Fit for Mitsubishi Outlander 2022 2023 2024(Not phev or Sport) TPE Rubber Liners Outlander Accessories All Season Guard Odorless Anti-Slip Floor Mats 3 Row Auxko
Imperial Tool 535C Kwik Charge Liquid Low Side Charger
-24%
$34.13 ($34.13 / count) $45.00 ($45.00 / count)
Imperial Tool 535C Kwik Charge Liquid Low Side Charger SepulvedaBlvd
crysss Reserved Parking EV Electrical Vehicle Only Charging Station Aluminum Metal 8x12 inch Sign Plate
$10.90
crysss Reserved Parking EV Electrical Vehicle Only Charging Station Aluminum Metal 8x12 inch Sign Plate putianshilichengquzelibaihuoshanghang
Nilight TPE Floor Mats for Mitsubishi Outlander PHEV 2023 2024,All Weather Custom Fit Heavy Duty Floor Liners
-20%
$80.18 $99.99
Nilight TPE Floor Mats for Mitsubishi Outlander PHEV 2023 2024,All Weather Custom Fit Heavy Duty Floor Liners Amazon.com
anko said:
What is so bad about somebody updating your WiFi firmware? Saves you the trouble ;)

Must say, in the Netherlands, we do not have the factory installed alarm systems. If any, we have aftermarket units that are not connected to the Wifi module (I do). I guess this is partly why we are so relaxed about it :idea:
Click to expand...

Very true.
However, what is so scary about some prankster messing up your software, apart from it being annoying? It would need a firmware reinstall, which your dealer will happily provide.
As I said, you don't need a firmware hack to open it without the alarm going off, so what is new?


Now if it were possible to control it whilst driving, like some other cars appear to be, that would be scary. With the second-rate WiFi on this car? Not a chance...
 
SolarBoy said:
Basically wazzard identified a bunch of scary things in his thread about his own home-made WiFi app.

Read all the pages, including the bit that shows that via WiFi there is access to the engine, then come back and say if you think there is no issue ...

:)
Click to expand...
Where does it say he has access to the engine via WiFi? He assumes he may at some time. But hew also says he is struggling and the picture I put in explains why. So he says. I am not saying it is not possible. But I don't see where he says he managed to do it ....
 
HHL said:
[Out of that 1%, one of them actually has to be near YOUR car while YOU operate your phone app to access it.
Click to expand...
Don't think this is even true. They needed to be near an app that was communicating to a car to learn the protocol. But now they have learned it, all they need is crack the wifi code of your car ....
 
jaapv said:
The funny thing about this whole hoo-ha is that the journalists do not realize that it is wholly unnecessary to go to the trouble of hacking the car to disable the alarm and open it...* The rest of the hack is just play-around-annoy-your-neighbour stuff.


*Get a signal amplifier @ 15 pounds, hide it under the car, get behind a bush in the neighbourhood, and as the owner opens the car store the amplified signal on your mobile phone. Use the phone to open the car.
If you can stand within 20 meters of the car unnoticed you don't even need the amplifier.

https://www.youtube.com/watch?v=U86P_ByfgY8
Click to expand...

That's seems a bit old and unlikely these days.. I thought key fobs for some time now use a rolling pattern sequence so simply capturing a one-off signal would be useless as the car would require a different one next time. The two keys have different identifier tags in the signal so the car can cope with a signal for either being at different points in the sequence.
 
anko said:
Must say, in the Netherlands, we do not have the factory installed alarm systems. If any, we have aftermarket units that are not connected to the Wifi module (I do). I guess this is partly why we are so relaxed about it :idea:
Click to expand...

In the UK, if it's not nailed or screwed down to something immovable, it will be stolen whether or not the person that took it actually needed it or had any plans with doing anything with it.

I believe the alarm on the UK spec would be there to reduce the insurance rating?

(I've just set the alarm off by having the windows and sunroof open ... it's hot (the 1 day of summer) and as my WiFi app is disconnected I can't pre-cool ...)
 
I thought the 'current scheme' had to do with Keyless entry systems. These systems only allow access to the car when the car receives a signal from the FOB. No press on the FOB is required, but the FOB only transmits its signal when it sees a signal emitted by the car (which has approx. 70 cm range). So, you need an amplifier to extend the cars signal to the FOB and then another amplifier to extend the FOB signal back to the car. And then you can use the Keyless entry system with the FOB not being neer the car. But one amplifier needs to be near the car and the other has to be near the FOB.
 
SolarBoy said:
I believe the alarm on the UK spec would be there to reduce the insurance rating?
Click to expand...
Oh, we (most of us) do have alarm systems, but as far as I understand the factory fitted systems are considered not safe enough by the insurance companies over here.
 
anko said:
I thought the 'current scheme' had to do with Keyless entry systems. These systems only allow access to the car when the car receives a signal from the FOB. No press on the FOB is required, but the FOB only transmits its signal when it sees a signal emitted by the car (which has approx. 70 cm range). So, you need an amplifier to extend the cars signal to the FOB and then another amplifier to extend the FOB signal back to the car. And then you can use the Keyless entry system with the FOB not being neer the car. But one amplifier needs to be near the car and the other has to be near the FOB.
Click to expand...
Which will be hanging inside your front door...Close enough at night.
 
anko said:
SolarBoy said:
I believe the alarm on the UK spec would be there to reduce the insurance rating?
Click to expand...
Oh, we (most of us) do have alarm systems, but as far as I understand the factory fitted systems are considered not safe enough by the insurance companies over here.
Click to expand...
Most insurers over here insist on a class 1 (immobilizer), class 3 (factory alarm) and class 4 (tracking) alarm, taken together that makes a class 5 alarm system, fitted to cars over a certain price ( about 30.000 Euro incl. taxes IIRC).
 
jaapv said:
anko said:
SolarBoy said:
I believe the alarm on the UK spec would be there to reduce the insurance rating?
Click to expand...
Oh, we (most of us) do have alarm systems, but as far as I understand the factory fitted systems are considered not safe enough by the insurance companies over here.
Click to expand...
Most insurers over here insist on a class 1 (immobilizer), class 3 (factory alarm) and class 4 (tracking) alarm, taken together that makes a class 5 alarm system, fitted to cars over a certain price ( about 30.000 Euro incl. taxes IIRC).
Click to expand...
Class 3 is not synonym for factory alarm. It is even questionable if the factory alarm of the PHEV would classify as a Class 3 alarm.

My insurer settle for class 3 alarm for my 52K euro PHEV. Pretty sure most insurers would have, if it hadden't been for the hoax back in 2013 that a zillion Russians where preparing to invade our country and lift our brand new PHEVs as soon as they had arrived .... :mrgreen:
 
jaapv said:
Which will be hanging inside your front door...Close enough at night.
Click to expand...
So true. Therefor, mine is not ;)

But altogether a story quite different from simply trapping and copying a signal with a cell phone and reusing it later.
 
AndyInOz said:
I have followed those de-registration instructions and have confirmed that the car no longer seems to have active wifi.

(i.e. I cannot link to the car from either of my tablets, and the car is no longer showing up on a scan for wifi devices)

Andy

PS. Yes, I hate replying to my own posts.
Click to expand...


I've never used the app since buying new from the dealer and so have never registered the app. Do I also have to go through this process?
 
Shamusj said:
AndyInOz said:
I have followed those de-registration instructions and have confirmed that the car no longer seems to have active wifi.

(i.e. I cannot link to the car from either of my tablets, and the car is no longer showing up on a scan for wifi devices)

Andy

PS. Yes, I hate replying to my own posts.
Click to expand...


I've never used the app since buying new from the dealer and so have never registered the app. Do I also have to go through this process?
Click to expand...

No you don't.

You can easily doublecheck by looking for the outlander wifi ssid which starts with REMOTE
 

Share this page

Similar threads

B
Wifi Not Broadcasting & Charging Timer Not Functioning
Replies
5
Views
897
Phev2016
P
B
Wifi Not Broadcasting and the Charging Timer Not Functioning
Replies
0
Views
328
b4surani
B
Woon Chung
Battery life span will not be affected by PHEV mode selection?
Replies
4
Views
1K
Woon Chung
Woon Chung
L
Outlander Phev In-Depth Observations - Mike Mas
2 3 4
Replies
65
Views
15K
michael8554
M
D
Performing a DBCAM (battery calibration) using a ThinkCar OBD scanner, with screenshots (for PHEV up to 2022)
2 3
Replies
44
Views
8K
Daixiwen
D

Latest posts

Back
Top