After Tencent's Keen Security Lab researchers exploited security flaws in the software of the Tesla S to remotely control some systems on the car in both parking and driving mode, Tesla has promptly patched the bugs with an over-the-air fix.
Tencent claims to be the first one to uncover the bugs and obtain remote control access to a Tesla car. The access was gained by hacking into the onboard computer system called CAN bus, using a web browser. The team posted a video on YouTube, which showed them manipulating brakes on a moving Tesla S car. They were also able to remotely open the trunk and operate the windshield wipers.
Tencent researchers claim that they were able to verify the attack vector on different variants of the Tesla Model S. The car was apparently manipulated from about 12 miles away. According to Engadget, the team was able to obtain access to the car by connecting it to a malicious WiFi hotspot. They were also able to manipulate the car's GPS and search for a destination.
Keen Security Lab reported the bugs to Tesla and the company patched them within 10 days of receiving the report. The company said that although Tesla users were exposed to a very low level of risk, it took swift action. Tesla also explained that hack could not only be trigged if a Tesla web browser was activated and in use. The target vehicle is also required to be in proximity to the malicious WiFI hotspot.