Most active commenters
  • jeffbee(4)

←back to thread

Tesla said it didn't have key data in a fatal crash, then a hacker found it

(www.washingtonpost.com)
650 points clcaev | 14 comments | 29 Aug 25 11:15 UTC | HN request time: 0.734s | source | bottom
Show context
metaphor ◴[29 Aug 25 12:25 UTC] No.45063162[source]
> Immediately after the wreck at 9:14 p.m. on April 25, 2019, the crucial data detailing how it unfolded was automatically uploaded to the company’s servers and stored in a vast central database, according to court documents. Tesla’s headquarters soon sent an automated message back to the car confirming that it had received the collision snapshot.

> Moments later, court records show, the data was just as automatically “unlinked” from the 2019 Tesla Model S at the scene, meaning the local copy was marked for deletion, a standard practice for Teslas in such incidents, according to court testimony.

Wow...just wow.

replies(5): >>45063302 #>>45063632 #>>45063687 #>>45063980 #>>45064115 #
A4ET8a8uTh0_v2 ◴[29 Aug 25 12:39 UTC] No.45063302[source]
I am trying to imagine a scenario under which that is defensible and does not raise various questions including compliance, legal, retention. Not to mention, who were the people who put that code into production knowing it would do that.

edit: My point is that it was not one lone actor, who would have made that change.

replies(3): >>45063366 #>>45063389 #>>45064252 #
1. jeffbee ◴[29 Aug 25 12:46 UTC] No.45063389[source]
The artifact in question was a temporary archive created for upload. I can't think of a scenario in which you would not unlink it.
replies(3): >>45063557 #>>45063579 #>>45064000 #
2. JumpCrisscross ◴[29 Aug 25 13:01 UTC] No.45063557[source]
And then you delete the server copy?
replies(2): >>45063622 #>>45064025 #
3. constantly ◴[29 Aug 25 13:03 UTC] No.45063579[source]
> I can't think of a scenario in which you would not unlink it.

Perhaps if there is some sort of crash.

replies(1): >>45063851 #
4. jeffbee ◴[29 Aug 25 13:07 UTC] No.45063622[source]
Obviously no. The behavior of Tesla in discovery of this case is ridiculous. But treating this technical detail as an element of conspiracy is also ridiculous.
replies(1): >>45063977 #
5. artursapek ◴[29 Aug 25 13:28 UTC] No.45063851[source]
Exactly. That's the last data I would ever delete from the car, if I was trying to preserve valuable data.
replies(2): >>45064006 #>>45064035 #
6. actionfromafar ◴[29 Aug 25 13:38 UTC] No.45063977{3}[source]
If that was the only thing going wrong, yes. But when you have a pattern of conspiracy, deleting immediately on the client instead of having a ring buffer which ages out the oldest event, may be a malicious choice.
replies(1): >>45064049 #
7. giancarlostoro ◴[29 Aug 25 13:40 UTC] No.45064000[source]
You were right in your first statement, but your follow up is a bad assumption, I think everyone here will agree that in the case of a crash this data should be more easily available and not deleted.

Assuming its not intentionally malicious this is a really dumb bug that I could have also written. You zip up a bunch of data, and then you realize that if you don't delete things you've uploaded you will fill up all available storage, so what do you do? You auto delete anything that successfully makes it to the back-end server, you mark the bug fixed, not realizing that you overlooked crash data as something you might want to keep.

I could 100% see this being what is happening.

8. jeffbee ◴[29 Aug 25 13:40 UTC] No.45064006{3}[source]
What if you were the guy who got a ticket that just said "implement telemetry upload via HTTP"?

Which of these is evidence of a conspiracy:

  tar cf - | curl
  TMPFILE=$(mktemp) ; tar cf $TMPFILE ; curl -d $TMPFILE ; rm $TMPFILE
replies(1): >>45064141 #
9. semiquaver ◴[29 Aug 25 13:41 UTC] No.45064025[source]
They didn’t delete the server copy though. That’s what this article is about.

  > Tesla later said in court that it had the data on its own servers all along
replies(1): >>45064939 #
10. alias_neo ◴[29 Aug 25 13:42 UTC] No.45064035{3}[source]
All of their actions point at intentionally wanting that data to disappear, they even suggested turning it on and updating it, which everyone who's ever tried to protect important information on a computer knows is that exact opposite to what you should do.

Any competent engineer who puts more than 3 seconds of thought into the design of that system would conclude that crash data is critical evidence and as many steps as possible should be taken to ensure it's retained with additional fail safes.

I refuse to believe Tesla's engineers aren't at least competent, so this must have been done intentionally.

11. jeffbee ◴[29 Aug 25 13:43 UTC] No.45064049{4}[source]
I haven't seen anything in the (characteristically terrible and vague) coverage of this case that suggests the Tesla deleted the EDR.
12. alias_neo ◴[29 Aug 25 13:51 UTC] No.45064141{4}[source]
That's reductive.

The requirements should have been clear that crash data isn't just "implement telemetry upload", a "collision snapshot" is quite clearly something that could be used as evidence in a potentially serious incident.

Unless your entire engineering process was geared towards collecting as much data that can help you, and as little data as can be used against you, you'd handle this like the crown jewels.

Also, to nit-pick, the article says the automated response "marked" for deletion, which means it's not automatically deleted as your reductive example which doesn't verify it was successfully uploaded (at least && the last rm).

13. JumpCrisscross ◴[29 Aug 25 14:53 UTC] No.45064939{3}[source]
Wasn’t that after they’d been caught?
replies(1): >>45067742 #
14. semiquaver ◴[29 Aug 25 18:31 UTC] No.45067742{4}[source]
Yes.