Ultra-Wideband Key Fobs Close a Loophole That Car Thieves Exploit

2026-04-21 · Source: IEEE Spectrum · Field: Technology & Digital — Cybersecurity & Data Privacy, Internet of Things (IoT) & Connected Devices, Software Development & Engineering · Depth: Intermediate, short

Summary

Car thieves are increasingly exploiting security gaps in hands-free unlocking and keyless start systems, with keyless entry hacks now surpassing physical lock-picking in the U.K. STMicroelectronics has introduced its ST64UWB line of security chips to address this, patching a vulnerability where previous systems verified key identity but not physical distance, enabling "relay attacks." These attacks involve amplifying a key fob's signal to trick a car into believing the key is nearby, even when it's inside a house. New Ultra-Wideband (UWB) key fobs and car locks enhance security by measuring signal travel time, which is significantly harder to spoof than signal strength, thus enforcing proximity as a critical security check. However, while UWB makes faking proximity difficult, its full effectiveness depends on automakers consistently requiring distance verification, as it does not eliminate all wireless vulnerabilities like radio channel jamming.

Key takeaway

New Ultra-Wideband (UWB) key fobs and car security chips, such as STMicroelectronics' ST64UWB line, are designed to prevent "relay attacks" that exploit keyless entry systems. These systems enforce physical proximity by measuring signal travel time, making it impossible for thieves to spoof distance and trick vehicles into unlocking. This directly addresses the 58% of keyless vehicle thefts attributed to such exploits, provided UWB distance verification is consistently enforced.

Topics

• Ultra-Wideband (UWB) Technology
• Keyless Entry Systems
• Car Theft Exploits
• Relay Attacks
• STMicroelectronics

Best for: Security Engineer, Software Engineer, Research Scientist

Related on AIssential

• Identifying People Using Wi-Fi Routers — Standard Wi-Fi routers can identify individuals by analyzing their unique walking styles through unencrypted signal propagation data.
• BREAKING: India’s QUANTUM Leap - 1000Km Secure Network Goes Live — India has achieved a significant "quantum leap" by deploying a 1,000 km ultra-secure quantum communication network, one of the longest fiber-based quantum networks globally, in under two years, signif…
• Smart Miles — Website access via Smart Miles triggers bot verification for www.producthunt.com.
• Chip-processing method could assist cryptography schemes to keep data secure — A new chip fabrication method creates twin physical unclonable functions (PUFs) for direct, secure device authentication.
• The Stryker Attack: Enterprise Resiliency Plans Can’t Ignore UEM — An Iranian-linked hacktivist group, Handala, claimed a geopolitically motivated cyberattack on medical device manufacturer Stryker Corporation, alleging the wipe of 200,000 systems and theft of 50 terabytes of data.
• AI-Powered Samsung FRP Bypass: A Smarter Way to Unlock Without Guesswork — AI-powered tools offer a reliable and safe method for bypassing Samsung FRP by adapting to device specifics.

Open in AIssential →

Editorial summary, takeaway, and curation by AIssential. Original article published by IEEE Spectrum.