Flipper Zero \u2018DarkWeb\u2019 Firmware Bypasses Rolling Code Security on Major Vehicle Brands
\n \t
\n
<\/BR>
\n
\n \t
\n
<\/BR><\/p>\n
A new and custom firmware for the popular Flipper Zero<\/a> multi-tool device is reportedly capable of bypassing the rolling code security systems used in most modern vehicles, potentially putting millions of cars at risk of theft.<\/p>\n Demonstrations by the YouTube channel \u201cTalking Sasquach\u201d reveal that the firmware, said to be circulating on the dark web, can clone a vehicle\u2019s keyfob with just a single, brief signal capture.<\/p>\n Rolling code security, the industry standard for vehicle keyless entry for decades, was designed to prevent so-called \u201creplay attacks.\u201d The system works by using a synchronized algorithm between the keyfob (transmitter) and the vehicle (receiver). <\/p>\n Each time a button is pressed, a new, unique, and unpredictable code is generated. An old code, once used, is rejected by the vehicle, rendering simple signal recording and re-broadcasting useless.<\/p>\n Previously known attacks on this system, such as \u201cRollJam,\u201d were technically complex and difficult to execute in the real world. RollJam required jamming the vehicle\u2019s receiver to prevent it from getting the first signal from the legitimate keyfob, while simultaneously recording that unused code for later use.<\/p>\n This new exploit, however, is far more dangerous due to its simplicity. According to the demonstrations, an attacker using a Flipper Zero<\/a> equipped with this custom firmware needs only to be within range to capture a single button press from the target\u2019s keyfob, for instance, as the owner locks or unlocks their car. No jamming is required.<\/p>\n