Comment by xattt
18 hours ago
Kias have a “Massachusetts mode” flag hidden behind a service menu (that needs a dealer code) that disables telematics at the owner’s request. However, the service menu pin also has timeout protection that will inject a waiting period between retries so there is no guessing.
I don’t think there’s convincing my dealer to get into the service menu and disabling it.
I would presume that other manufacturers might have this as well.
I was able to enter dealer mode on my 2023 Kia using this tutorial. https://youtu.be/Q2AEhGYnOaA
It let me disable telematics, and Kia support confirmed that my car was flagged as a "Massachusetts variant" even though it wasn't purchased in MA.
Give one of the mechanics $500 and I bet they’ll accidentally drop the password on the floor of the car as they get out after moving it inside to change the oil.
Or someone get access to 5.5 cyber or mythos and brute force their way in
I bet if you can speak to the mechanic without the service advisor supervising the innteraction $100 would do it.
Yea but it’s worth at least $500 to me so I’d give the guy more, personally. $100 is a nice dinner out, $500 might help pay a bill.
1 reply →
> I don't think there's convincing my dealer...
How far do you live from Massachusetts, and how do your feel about driving vacations?
> I would presume that other manufacturers might have this as well.
On newer vdubs there’s both a “location services” and a “offline mode” toggle in the infotainment, though this only turns the infotainment SIM off. Obviously this also disables remotely controlling the car using the app.
And the secondary eCall SIM cannot be disabled - not without triggering a fault code and a tell-tale. Since eCall is considered a safety-critical system it has self-monitoring and must work for the vehicle to pass inspection. It even has its own separate power supply. This is true for any vehicle (type) newer than ~2018 in the EU. This probably makes tracking the rough location of any eCall-equipped vehicle quite easy, if you have signaling-level access to the cell network – exactly like in all those SS7 exploits.
edit: turns out they thought about that and eCall modules aren’t supposed to constantly stay connected to a cellular network (dormant mode). Instead they only log onto the cellular network when needed. Difficult to verify as a consumer though.
> Kias have a “Massachusetts mode” flag hidden behind a service menu (that needs a dealer code) that disables telematics at the owner’s request.
I would be very concerned that the flag just continues to submit your data but with a "telematics disabled" bit set on it. This is absolutely how location privacy is implemented in some devices. Moreover, even if it is effective it could be remotely reset including accidentally as part of an update.
Better than not setting it, I suppose! :)
I'm more afraid of the likelihood of someone smashing the window on a modern Kia thinking they can start it up with an iPhone lightning cable (just look up "Kia Boys" if you're confused by any of this) and drive off with it, when in fact, they cannot anymore. Unfortunately, until people stop breaking into Kias I'll avoid the brand in perpetuity.
Nah, not an issue in Canada since immobilizers are mandatory.
Not an issue with modern Kias in the US since they come with them but previous models did not, so guess what people will break into it regardless. Criminal will break the window, try and then leave your car damaged.
OK, except the kids these days have the cheap Autel immo/key programmers and the Autel universal keys. They're just cracking into cars, plugging in the Autel, and running the all-keys-lost procedure on quite a few makes and models and just driving away.
You can get an Autel KM100 for under ~$400 from China. Worked great to program in a couple spare keys for my car and less than what the dealer was gonna charge...
https://www.10tv.com/article/news/local/teens-indicted-colum...