If you glitch one, can you glitch many?
Extracting automotive firmware is a challenge.
@phil-barr3tt.bsky.social explains how he bypassed the IDCODE protection in several variants of the RH850 MCU family using both voltage glitching and side-channel analysis ⚡️🚗
blog.quarkslab.com/bypassing-de...
Reverse engineers often spend a lot of time deciphering third-party firmware libraries. At RE//verse 2026 (Fri, 5 PM), Benoit & Sami will introduce SightHouse, an open-source tool to automatically identify third-party functions and speed up analysis.
Join us!
Après un numéro spécial #RedTeam, MISC consacre son nouveau hors-série à la sécurité automobile 🚗. À découvrir très prochainement en kiosque & en ligne ! #cybersécurité #automotive
Upgrade your Honda RAM: how to upgrade Honda Accord hardware and install the latest available Android - DIY car guide! 🚗 🪛 👾
Link to Post: www.linkedin.com/posts/dlasko...
Side channel attacks for breaking the firmware encryption on ESP32
courk.cc/breaking-fla...
#infosec #espressif
The new type of proximity attacks can blind vehicle's camera and force it into a crash: Electromagnetic Signal Injection Attacks in theory and practice. 🚘 🎥 🧲
Link to Post + 4 academic papers: www.linkedin.com/posts/dlasko...
I've been diving into electromagnetic (EM) side-channel attacks with Correlation Power Analysis (CPA) these past few weeks and just published a blog article about my journey: collshade.fr/articles/cpa...
Mount for both PicoEMP and Silicon Toaster is finished, adding a protection over the capacitors of the second one. Time to compare 250V EMFI glitches to 1000V ones. ⚡
#RAMN, a nice project from #Toyota to simulate several ECUs: github.com/ToyotaInfoTe...
Much more affordable than PASTA and the stackable extension to add I/Os and connectivity is a great idea.
Good device to get into #CarHacking, need to build one (and test their #CARLA simulator) 🚗 🔧
Where car manufacturers hide engineering menus and debug services in In-Vehicle Infotainment systems (Android-based) - and how to find and enable them. 🚘 🥷🪝
Full post on Linkedin: www.linkedin.com/posts/dlasko...
It's still the time to say "Now I have a machine gun, Ho-Ho-Ho"
Need to adjust the mount for the 3D printer to fit the Ledger #silicontoaster, including a shielding for those nice capas, better to avoid touching some parts ⚡
security.humanativaspa.it/fault-inject...
A very interesting article on a smart approach to understand what have been altered during a crowbar glitching fault injection ⚡
With a one-time RCE via Bluetooth, attackers infect the car and are able to record in-car audio, take screenshots, and download contacts from a Skoda Superb, all while it is being driven, over the Internet! 🚘😱 🔥
PDF: i.blackhat.com/EU-24/Presen...
Video PoC: www.youtube.com/watch?v=T4v8...
How Smart Are Your "Smart" Keys? Researchers analyze the Remote Keyless Entry (RKE) systems of Honda, Toyota, Maruti-Suzuki, and Mahindra, putting them to the test against known attacks. 🔑 📶 🚘
Paper: eprint.iacr.org/2024/1816.pdf