Researchers Target Tesla Model 3 In Spoofing Attack, Get It To Turn Off The Highway

Semi-autonomous vehicles are becoming increasingly common, so it’s a bit alarming that researchers were able to trick a Tesla Model 3 that was using Navigate on Autopilot

According to Regulus Cyber, they purchased a $400 GPS spoofer and a $150 jammer online. They then placed a small spoofing antenna on the roof of the Model 3 to simulate an external attack, while also limiting its effect on other GPS receivers.

As part of the test, researchers traveled on a highway at 59 mph (95 km/h) while using Navigate on Autopilot. The route would take them to a nearby town and require the car to make an autonomous exit.

However, the team transmitted fake satellite coordinates which were picked up by the GPS receiver in the Model 3. This caused the car to think it needed to exit the highway in 500 feet (152.4 meters), when in reality the actual exit was still over a mile away.

As a result, the car rapidly slowed down to 15 mph (24 km/h) and turned onto an emergency turn off instead of the exit. Researchers said the driver had his hands off the steering wheel at the time of the attack and when he regained control of the vehicle, it was “too late to attempt to maneuver back to the highway safely.”

Regulus Cyber says Navigate on Autopilot uses GPS and Google map data to determine what lanes the vehicle should be in and what exits to take. This makes it susceptible to GPS spoofing attacks. In particular, the company says the car was successfully spoofed several times and this caused “extreme deceleration and acceleration, rapid lane changing suggestions, unnecessary signaling, multiple attempts to exit the highway at incorrect locations and extreme driving instability.”

While the spoofing attack was only designed to target the Model 3, researchers said people with more nefarious intentions could buy a high-gain directional antenna which would increase the spoofer’s range to nearly a mile. Adding an amplifier to the mix could extend the spoofer’s range to a “few miles.”

The company also tested a Tesla Model S, but the spoofing did not have any impact on the actual driving. However, the vehicle’s air suspension would change “unexpectedly” as the car was lead to believe it was traveling on surfaces it wasn’t.

Regulus Cyber reached out to Tesla following their Model S test – and before the Model 3 experiment – and was told “Any product or service that uses the public GPS broadcast system can be affected by GPS spoofing, which is why this kind of attack is considered a federal crime.” Tesla went on to say the effects of a spoofing attack would be minimal, but that “hasn’t stopped us from taking steps to introduce safeguards in the future which we believe will make our products more secure against these kinds of attacks.”

Despite these assurances, Regulus Cyber CEO Yonatan Zur said “We have ongoing research regarding this threat as we believe it’s an issue that needs solving. These new semi-autonomous features offered on new cars place drivers at risk and provides us with a dangerous glimpse of our future as passengers in driverless cars.”

H/T to Bloomberg

more photos...
  • robotlogic

    I’m waiting for people to start doing something like that with the Amazon delivery drones. Free stuff just fell from the sky.

  • Dude

    I read the title as “get it to turn off on the highway” and got very confused as to how tf that would be possible. Glad I just can’t read lol

  • brn

    Why did the Model S do so well?

  • Haggy

    The problem is that not only would someone have to follow a car around with a much more powerful transmitter, that would also tell other cars with navigators to tell their drivers to take the next turn instead of the one after it, whoever is doing the spoofing would also have to know that the driver’s car plans to take a specific exit, and that it will be the next task in the list of directions.

    In other words, if my route tells me to take specific streets that vary based on current traffic, get on a freeway at some point, and then get off at exit 25, the spoofer would have to know that the car wants to take exit 25 so it could pick a different exit that happens to be on the same route. If my navigator decided to take exit 24 instead, or skip 25 and go to 26, this wouldn’t work.

    And if the person knows my exact route but I don’t happen to use NOA, it would be a moot point.

    To be clear, it can’t make the car turn off the road at a random point. It would still have to see an exit at that spot. So the worst case would be that the car would take a wrong exit, be out of range of the spoofer, and then put itself back on course.

    There’s no way that a random car could be targeted. And it would screw up so many cars in the area that someone would call the police.

  • Astonman

    They’re going to use this idea on the next Mission Impossible movie;)

  • Enter Ranting

    Huh, hacking into an autonomous system. Who could have seen that coming?

    • Kevin Cagle

      You can thank the Russians for $300 spoofers. In the North Sea they have been using container ships as guinea pigs for years now.

  • DHG2605

    Tis why I will never own/use autonomous tech to drive my car.

    • brn

      I will, just not yet.

Ford Mustang Bullitt Goes For A (Legal) High-Speed Run On The Autobahn

The reincarnation of the iconic ‘Stang was so successful, Ford announced it will extend its production run.

Porsche Taycan Demonstrates Its Speed At NYC Formula E Course

The Taycan made its third and final stop in the company’s Triple Demo Run at the Big Apple.

Mario Andretti’s Lamborghini Countach Is A $500k Piece Of Automotive Royalty

Lamborghini only ever built 321 examples of the Countach 5000 S, and this one had a very special owner.

Toyota Kicks Off New Ad Campaign As 2020 GR Supra Arrives At Dealers Later This Month

After a 21 year absence, the Toyota Supra will return to dealerships soon.

Ranger Danger: Ford Reportedly Working On A Bronco Pickup To Battle Jeep Gladiator

The hardcore pickup is expected to be based on the next-generation Ranger and could go into production in 2024.

HSV SportsCat Series 2 Sequel Brings Enhanced Styling, Equipment

The Holden Colorado-based off-road truck receives cosmetic changes that make it look more aggressive.

VW Plans To Launch Autonomous Vehicles In The Middle Of The Next Decade

VW believes fully autonomous vehicles will primarily appeal to the fleet operators and the rich.

Audi Celebrates 25 Years Of RS Models, Confirms Two More For 2019

Audi will introduce two new RS models later this year and one is likely the RS Q8.

This Could Be The First Emoji For Electric Vehicles

Created by Electrify America, the emoji shows a generic sedan at a charging station.

Should Mazda’s New CX-30 Make Its Way On Your Shopping List?

Its sleek design, sporty drive without compromising comfort, and ample room for four might just to the trick.