Not quite as easy as it says. First they need to catch the code twice, then work through the remaining 200000 combinations for a half hour. That gets them into the vehicle, but doesn't start it unless it has push button start. To start one without push button start, they need to spoof the proximity RFID tag inside the actual key as well. I suspect if someone is putting that much effort into stealing your car, they'll get it one way or another. A flat deck tow truck can grab it much faster...without all the electronic snooping.
Quote:
However, the three men discovered that by tuning in to the wireless communication between the car and the transponder just twice, it was possible to narrow the number of potential combinations down to just 200,000.
Automated 'cracking' programmes could then try every one of those 200,000 codes in just half-an-hour.