RollJam Keyless Entry Hijacker by Samy Kamkar

When we hit on the button of our car’s key fob, we hardly gave it a thought. It works every time and even if it didn’t “get it” the first time, the second press will do the trick. If you think that simple action of having to click twice is seemingly harmless. Think again. Cos’ someone maybe pulling the secured codes off your key fob in the vicinity as you were trying to unlock your car. This “revelation” was revealed by security research Samy Kamkar who have developed a $32 device called “RollJam” that is capable of intercepting and recording the wireless key’s code.

Code hijacking isn’t the newest news; it exists since remote unlock was introduced, but car manufacturers and car security system makers have countered it with “rolling codes,” which changes the code each time you unlock the car. Even then, there are already ways to hack it and Kamkar’s creation only makes it even easier. Perhaps the bleakest of all is, RollJam is applicable to almost anything keyless entry systems, including alarm systems and garage doors. As mentioned, there are already “systems” to catch rolling codes, but Kamkar’s version is pocket-friendly and do not require a huge set up, which are exactly the “features” criminal minds are after.

All it needs is to place the device near a target and wait for the unsuspecting victim to use his or her key fob. The first time when the victim hits the button on they key fob, RollJam jams the first code and records it down at the same time. Think it may be a glitch of a keyless entry, the victim hit the button the second time, but again, RollJam intercept the signal, records it down and at the same time, pushes out the first intercepted code which unlocks the car. The victim will never notice the irregularity, after all, the door unlocks, but in actual fact, it leaves the thief with the latest code which he or she can then use to unlock the garage door or car at his or her as and when he or she wants. Basically, it is as good as handling a key over to them.

NOW READ  In Case You Missed It: Electreon’s Wireless Charging Road Has Arrived To Michigan, U.S.A.

The even scarier prospect is, RollJam can repeat the process indefinitely, which will guarantee the hacker the latest unused code, ready for intrusion. Naturally, this isn’t a device presented to criminal minds at some fictional Villain-con, but it was a proof-of-concept unveiled at Defcon to serve as a wakeup call for car and garage companies to upgrade their systems with expiring codes or similar to counter this obvious flaw.

And it isn’t in theory either; RollJam has proven to work on several big brand car and security system makers including Nissan, Cadillac, Ford, Toyota, Lotus, Volkswagen, and Chrysler, and Cobra and Viper alarm systems, as wells Genie and Liftmaster garage door openers. Until automakers and garage door makers up their game, the next time when you find yourself needing to press the button twice *cue Twilight Zone music*, then you better be wary of your surrounding.

via Engadget