alt Hacker NewsKias have a “Massachusetts mode” flag hidden behind a service menu (that needs a dealer code) that disables telematics at the owner’s request. However, the service menu pin also has timeout protection that will inject a waiting period between retries so there is no guessing.
I don’t think there’s convincing my dealer to get into the service menu and disabling it.
I would presume that other manufacturers might have this as well.
Replies
Give one of the mechanics $500 and I bet they’ll accidentally drop the password on the floor of the car as they get out after moving it inside to change the oil.
> I don't think there's convincing my dealer...
How far do you live from Massachusetts, and how do your feel about driving vacations?
> I would presume that other manufacturers might have this as well.
On newer vdubs there’s both a “location services” and a “offline mode” toggle in the infotainment, though this only turns the infotainment SIM off. Obviously this also disables remotely controlling the car using the app.
And the secondary eCall SIM cannot be disabled - not without triggering a fault code and a tell-tale. Since eCall is considered a safety-critical system it has self-monitoring and must work for the vehicle to pass inspection. It even has its own separate power supply. This is true for any vehicle (type) newer than ~2018 in the EU. This probably makes tracking the rough location of any eCall-equipped vehicle quite easy, if you have signaling-level access to the cell network – exactly like in all those SS7 exploits.
edit: turns out they thought about that and eCall modules aren’t supposed to constantly stay connected to a cellular network (dormant mode). Instead they only log onto the cellular network when needed. Difficult to verify as a consumer though.
> Kias have a “Massachusetts mode” flag hidden behind a service menu (that needs a dealer code) that disables telematics at the owner’s request.
I would be very concerned that the flag just continues to submit your data but with a "telematics disabled" bit set on it. This is absolutely how location privacy is implemented in some devices. Moreover, even if it is effective it could be remotely reset including accidentally as part of an update.
Better than not setting it, I suppose! :)
I'm more afraid of the likelihood of someone smashing the window on a modern Kia thinking they can start it up with an iPhone lightning cable (just look up "Kia Boys" if you're confused by any of this) and drive off with it, when in fact, they cannot anymore. Unfortunately, until people stop breaking into Kias I'll avoid the brand in perpetuity.
I was able to enter dealer mode on my 2023 Kia using this tutorial. https://youtu.be/Q2AEhGYnOaA
It let me disable telematics, and Kia support confirmed that my car was flagged as a "Massachusetts variant" even though it wasn't purchased in MA.