Hyundai and Kia issue software upgrades to thwart theft hack • The Register

Korean car-makers Hyundai and Kia will problem software program updates to a few of their fashions after a technique of stealing them circulated on TikTok, resulting in many thefts and even some deaths.

The “Kia Problem” began circulating in mid-2022 and defined that it is potential to take away the steering column masking on some Hyundai and Kia fashions by power, exposing a slot that matches a USB-A plug. Turning the plug prompts its ignition, permitting thieves to drive away.

Movies depicting the hack went viral, main to large spikes in thefts of the susceptible fashions around the globe.

The US Nationwide Freeway Site visitors Security Administration (NHTSA) on Tuesday stated it’s conscious of “at the least 14 reported crashes and eight fatalities” ensuing from the hack.

Now each automakers have introduced they’re going to problem software program to thwart the exploit.

Hyundai’s advisory states the improve will probably be carried out by sellers and would require lower than an hour to finish.

“The software program improve modifies sure automobile management modules on Hyundai autos outfitted with commonplace ‘turn-key-to-start’ ignition programs,” The car-maker defined. “Consequently, locking the doorways with the important thing fob will set the manufacturing facility alarm and activate an ‘ignition kill’ characteristic so the autos can’t be began when subjected to the popularized theft mode.”

The replace will probably be progressively supplied to house owners of “virtually 4 million autos” – specifically the 2017–2020 Elantra, 2015–2019 Sonata and 2020–2021 Venue.

The NHTSA’s announcement states that “Kia can also be rolling out its FREE software program updates in a phased method. The corporate will start to replace autos later this month, with ensuing phases all through the subsequent a number of months.”

Kia seems to not have introduced its updates however did yesterday pledge over the air updates in-car infotainment and navigation programs for some fashions.

Solely vehicles that use keys are vulnerable to the hack. Press-to-start autos – which depend on radio sign from a fob to permit engine begin – are proof against the assault as a result of they lack the mechanical components that make this exploit potential.

Literal brute power assaults on automotive ignitions have been potential for many years, as produce other electrical technique of beginning autos and not using a key.

The Kia Problem’s presence on TikTok and different social media platforms, nonetheless, meant the strategy was extensively shared. And due to the viral nature of social media, and its central place in standard tradition, additionally extensively emulated. ®