X

Chinese researchers take remote control of Tesla Model S

Tesla claimed that it patched the vulnerabilities just 10 days after being notified of the hack.

Emme Hall/Roadshow

Researchers at the Chinese company Tencent got Tesla's attention when they claimed to have remotely controlled a Tesla Model S.

But instead of showing off the car's vulnerabilities online, Tencent notified Tesla and the automaker has already issued a patch to address the issue.

Tencent's researchers claim their hack is the "first case of remote attack which compromises CAN bus to achieve remote controls on Tesla cars," according to a Tencent blog post. The group claimed that it didn't need a person inside the vehicle to access the sunroof, move the seat, unlock the door and lock the touchscreen.

The vehicle did need to have been used at least once in order for this to work, though. Essentially, access was granted after the vehicle used its internet connection to search for a charging station. Only then could researchers start screwing with the car.

In the interest of patching these holes, Tencent notified Tesla and the automaker had a patch out within 10 days. A Tesla spokesperson told us the hack required specific steps, such as being connected to a "malicious" Wi-Fi hotspot. Either way, it's good to see the issue was taken care of, although less scrupulous actors may not inform the company when something goes awry.

Tesla's full statement is below:

Within just 10 days of receiving this report, Tesla has already deployed an over-the-air software update (v7.1, 2.36.31) that addresses the potential security issues. The issue demonstrated is only triggered when the web browser is used, and also required the car to be physically near to and connected to a malicious Wi-Fi hotspot. Our realistic estimate is that the risk to our customers was very low, but this did not stop us from responding quickly.

We engage with the security research community to test the security of our products so that we can fix potential vulnerabilities before they result in issues for our customers. We commend the research team behind today's demonstration and plan to reward them under our bug bounty program, which was set up to encourage this type of research.

Find the right car for you View Local Inventory
Andrew Krok Reviews Editor / Cars
Cars are Andrew's jam, as is strawberry. After spending years as a regular ol' car fanatic, he started working his way through the echelons of the automotive industry, starting out as social-media director of a small European-focused garage outside of Chicago. From there, he moved to the editorial side, penning several written features in Total 911 Magazine before becoming a full-time auto writer, first for a local Chicago outlet and then for CNET Cars.
See full bio
Andrew Krok
Read more from Andrew
Cars are Andrew's jam, as is strawberry. After spending years as a regular ol' car fanatic, he started working his way through the echelons of the automotive industry, starting out as social-media director of a small European-focused garage outside of Chicago. From there, he moved to the editorial side, penning several written features in Total 911 Magazine before becoming a full-time auto writer, first for a local Chicago outlet and then for CNET Cars.

Solar Installer Guides

Best Solar Products and Companies
Solar Installers by State
Solar Installers & Storage
Solar Resources and Guides

Other Energy Saving Guides

Other Types of Energy
Living Off the Grid Series

Article updated on September 20, 2016 at 9:26 AM PDT

Our Experts

Written by 
Andrew Krok
CNET staff -- not advertisers, partners or business interests -- determine how we review the products and services we cover. If you buy through our links, we may get paid. Reviews ethics statement
Andrew Krok Reviews Editor / Cars
Cars are Andrew's jam, as is strawberry. After spending years as a regular ol' car fanatic, he started working his way through the echelons of the automotive industry, starting out as social-media director of a small European-focused garage outside of Chicago. From there, he moved to the editorial side, penning several written features in Total 911 Magazine before becoming a full-time auto writer, first for a local Chicago outlet and then for CNET Cars.
See full bio
Why You Can Trust CNET
174175176177178179180+
Experts Interviewed
030405060708091011121314+
Companies Reviewed
108109110111112113+
Products Reviewed

We thoroughly evaluate each company and product we review and ensure our stories meet our high editorial standards.

Table of Contents
Chinese researchers take remote control of Tesla Model S