THE CAR THEFTS COVER-UP
Top car makers knew for years vehicles were a security risk... and kept it quiet
THE full extent of the cover-up by car makers who failed to warn drivers of a major security flaw can be revealed today.
As organised gangs use cheap devices to hack electronic entry systems and steal thousands of cars, a Daily mail investigation has revealed that millions of drivers have been left in the dark for years about the scale of the problem. Five years ago, Volkswagen – which was at the centre of the 2015 emissions cheating scandal – won a High Court injunction to prevent details of the security flaws being made public. but three years later, researchers found millions of its cars were still at risk.
And bmW has admitted in emails that criminals can hack into cars using tools anyone can buy on the ‘open market’. Police and industry
experts last night accused car makers of not doing enough and said motorists needed to be warned of the risks.
Today we can reveal how: ÷ Range Rovers were quietly fitted with new technology to prevent keyless car theft last month but its makers didn’t publicise it to avoid acknowledging that older models were at risk, experts claimed; ÷ Volkswagen suppressed warnings about the new risk of electronic car theft from owners for two years; ÷ An MP said manufacturers should address the security failings as ‘a matter of urgency’, and warn drivers of the risks; ÷ Electric car pioneer Tesla tried to prevent the publication of a video which demonstrated how one of its models could be stolen without a key.
Earlier this week the Mail exposed how gadgets that can be used to steal cars in seconds are being sold online for £100.
There are two main methods of hacking electronic fobs. The first ‘relays’ a signal from the keys in the owner’s home to the vehicle. This opens the car’s doors and allows criminals to use the button ignition to drive off. The second method involves forcing entry to the car and using a programming device that tells the vehicle’s computer to accept a blank key.
In 2013, researchers at the University of Birmingham discovered a security flaw in Volkswagen models, and VW took out a High Court injunction preventing the findings from being published until 2015.
The team discovered car makers including Audi, Citroën, Fiat, Honda and Volvo, as well as Volkswagen, had models that were vulnerable to ‘keyless theft’.
In granting the 2013 injunction, Mr Justice Birss said: ‘Volkswagen now know what the problem is. They have a chance to do something about it.’ But in 2016, a second research paper claimed many of the 100 million Volkswagen vehicles sold over the past 20 years were vulnerable and could be hacked using cheap tools. Audi, Seat and Skoda models sold since 1995 were also said to be affected as they share Volkswagen’s keyless system.
Meanwhile, Jaguar Land Rover (JLR) last month rolled out technology which prevents relay attack on its latest Range Rover models – but failed to inform its past or future customers.
Ian Elliott, a former Met Police officer who specialised in organised car crime, said: ‘If (JLR) came out and said, “we’ve solved our theft problem”, people will say “what theft problem?” and then you expose that some previous models are easily stolen. JLR could see that the writing was on the wall so they worked with the police. Certain other manufacturers need a kick up the backside.’
Last night West Midlands Police and Crime Commissioner David Jamieson said: ‘The idea that modern cars are more secure than ever is utter nonsense.
‘A lot of manufacturers are saying “we’re doing our best, these cars are safer than ever”. That’s not going to wash. Go and tell that to someone who’s had their car stolen.’ Last year Tesla was made aware of a video by stolen vehicle recovery service CanTrack Global, which demonstrated an ethical ‘relay theft’ attack on one of its models. A senior Tesla executive asked the team behind the video not to publish it.
Steve Double, a Tory member of the transport committee, said: ‘If car makers are aware of any vulnerabilities they need to address them as a matter of urgency.’
Mike Hawes, chief executive of the Society of Motor Manufacturers and Traders (SMMT), said: ‘Industry takes vehicle crime extremely seriously and any claims otherwise are categorically untrue.’
Tesla said it introduced free software updates to all vehicles last year, giving customers the ability to turn passive keyless entry on or off. BMW said it worked constantly to design the best possible security systems. VW said customer safety and security were its ‘highest priorities’, while JLR said it was doing ‘everything it can to combat vehicle crime’.
The Home Office said it ‘currently has no plans to introduce new regulations’.