Global cybersecurity firm Trend Micro, through its auto security unit VicOne and Zero Day Initiative, officially kicked off the three-day 2024 Pwn2Own Automotive event in Japan yesterday, January 24.
Impressively, a previous Tesla Model 3 hacker has once again managed to attack the company’s cybersecurity. According to Security Week, Synacktiv successfully hacked a Tesla modem and won a whopping $100,000 on just the first day of the event.
Synacktiv ranks first in the leaderboard
Synacktiv, a renowned offensive security company from France, has been a strong contender in the Pwn2Own event. In 2023, the team impressed the industry as it hacked a Tesla Model 3 by launching a “TOCTOU” exploit against a Tesla Gateway.
Apart from the Tesla modem, Synacktiv also won a prize for hacking a JuiceBox 40 Smart EV Charging Station.
The event also witnessed a successful hacking attack on a pair of Sony XAV-AX5500, among other categories.
As of the first day of the event, Synacktiv ranked first in the leadership board with a total of 31 points and a $295,000 cash prize. NCC Group EDG trails behind with 10 points and $70,000 in earnings.
Presented below are the complete results of the Pwn2Own Automotive Day 1:
| Attempt | Category | Result | Prize (US$) |
| Sina Kheirkhah targeting the ChargePoint Home Flex | Electric Vehicle Chargers | Success | 60,000 |
| Rob Blakely from Cromulence targeting Automotive Grade Linux | Operating Systems | Collision | 47,500 |
| The PCAutomotive Team targeting the Alpine Halo9 iLX-F509 | In-Vehicle Infotainment | Success | 40,000 |
| Tobias Scharnowski and Felix Buchmann of fuzzware.io targeting the Sony XAV-AX5500 | In-Vehicle Infotainment | Success | 40,000 |
| The Synacktiv Team targeting the Tesla Modem with a three-bug chain | Tesla | Success | 100,000 |
| Katsuhiko Sato targeting the Alpine Halo9 iLX-F509 | In-Vehicle Infotainment | Success | 20,000 |
| Sina Kheirkhah targeting the Sony XAV-AX5500 | In-Vehicle Infotainment | Failure | N/A |
| NCC Group EDG targeting the Pioneer DMH-WT7600NEX with a three-bug chain | In-Vehicle Infotainment | Success | 40,000 |
| The Synacktiv Team targeting the Ubiquiti Connect EV Station with a two-bug chain | Electric Vehicle Chargers | Success | 60,000 |
| RET2 Systems targeting the Phoenix Contact CHARX SEC-3100 with a two-bug chain | Electric Vehicle Chargers | Success | 60,000 |
| Vudq16 and Q5CA from u0K++ targeting the Alpine Halo9 iLX-F509 | In-Vehicle Infotainment | Success | 20,000 |
| The Midnight Blue/PHP Hooligans team targeting the Sony XAV-AX5500 | In-Vehicle Infotainment | Success | 20,000 |
| The Synacktiv Team targeting the ChargePoint Home Flex with a two-bug chain | Electric Vehicle Chargers | Collision | 16,000 |
| Sina Kheirkhah targeting the Phoenix Contact CHARX SEC-3100 | Electric Vehicle Chargers | Failure | N/A |
| The Synacktiv Team targeting the JuiceBox 40 Smart EV Charging Station Electric Vehicle Chargers category with a two-bug chain | Electric Vehicle Chargers | Success | 60,000 |
| Gary Li Wang targeting the Sony XAV-AX5500 | In-Vehicle Infotainment | Success | 20,000 |
| Connor Ford of Nettitude targeting the ChargePoint Home Flex with a two-bug chain | Electric Vehicle Chargers | Collision | 16,000 |
| NCC Group EDG targeting the Phoenix Contact CHARX SEC-310 | Electric Vehicle Chargers | Success | 30,000 |
| Sina Kheirkhah targeting the JuiceBox 40 Smart EV Charging Station | Electric Vehicle Chargers | Failure | N/A |
| The Synacktiv Team targeting the Autel MaxiCharger AC Wallbox Commercial with a two-bug chain | Electric Vehicle Chargers | Success | 60,000 |
| Chris Anastasio and Fabius Watson of Team Cluck targeting the ChargePoint Home Flex in the Electric Vehicle Chargers category | Electric Vehicle Chargers | Collision | 16,000 |
| Sina Kheirkhah targeting the Pioneer DMH-WT7600NEX | In-Vehicle Infotainment | Failure | N/A |
Source: VicOne
How did Synacktiv attack the Tesla modem?
Synacktiv reportedly hacked the Tesla Modem by using a “3-bug chain,” which led to the hardware’s compromisation.
In return, they secured 10 Master of Pwn Points and won a cash prize of $100,000.
As for the JuiceBox 40 Smart EV Charging Station, Synacktiv launched a 2-bug chain attack. It won another 6 Master of Pwn Points and $60,000.
Synacktiv aims to explore potential shortcomings in Tesla’s security systems further to help it improve its protection in the future. On the second day of the event, Synacktiv plans to attack Tesla’s Infotainment system with a “Sandbox Escape.”
The team seeks to access the systems of the Ryzen-based Tesla Model 3, Y, S, and X. As per BleepingComputer, they will carry out zero-day exploits to penetrate these systems.
About Pwn2Own Event
The Pwn2Own Automotive 2024 commenced in Tokyo on January 24 and is set to end on January 26, 2024. It is a special event that seeks to determine and fix flaws in connected automotive technologies.
There would be more than 45 entries in all categories that can potentially win a prize of more than $1,000,000 as the number of entries surpassed initial projections.
As EV-a2z previously reported, Tesla is the title sponsor of the event. It would be interesting to see how the contestants would attempt to hack Tesla’s cybersecurity. In hindsight, Synacktiv won more than $100,000 in cash and a Tesla Model 3 in the Pwn2Own Vancouver 2023 competition in March.
