2008 Bmw M3 Base Coupe 2-door 4.0l on 2040-cars

Auto blog

BMW's Connected Drive feature vulnerable to hackers

BMW is working to fix a cyber-security flaw that has left 2.2 million vehicles worldwide vulnerable to hackers. Cars equipped with the automaker's Connected Drive remote-services system are affected, according to the German Automobile Association (ADAC), which first discovered the problem. Researchers found they could lock and unlock car doors by mimicking mobile communications and sending phony signals to a SIM card installed in affected vehicles. An attack could be launched "within minutes" of accessing the system without the perpetrators leaving a trace, according to their report, in part because once they had gained access to the network, the communications were not secure. In response to the security gap, BMW says it has been upgrading software via over-the-air updates over the past week, so no visits to dealerships are needed to remedy the security hole. In fact, owners of affected cars may not have even noticed the updates taking place. The problem affects BMW, Rolls-Royce and MINI vehicles equipped with Connected Drive since 2010. Flaws were first reported to BMW last year by ADAC, which is the country's equivalent of AAA. ADAC says it withheld a public announcement until the car company could address the problem. While BMW has pushed the software patch to most affected vehicles, the organization said it's possible some at cars in the United States had not yet been updated. BMW did not respond to a request for comment Monday. In a written statement, the automaker said it knows of no real-world breaches. 2015 Off To Dubious Start The hack could raise the eyebrows of industry leaders: Cars are now the equivalent of mobile computers and cyber-security experts have been warning that the auto industry has been slow to close its security holes. BMW's breach marks the second time in 2015 that researchers have found a popular automotive feature with little or no security precautions. Last month, experts said a popular device made by Progressive Insurance that allows motorists to track their driving habits contained no security whatsoever. Like the Connected Drive smart-phone app, many automotive components and infotainment features were conceived and produced at a time when industry executives never considered the possibility someone might want to hack into them. But increased connectivity brings increased risk. Going forward, BMW says its Connected Drive features will now operate by using encrypted communications via the HTTPS protocol.

BMW recalling a grand total of three X3s over instrument panel defect

We've seen big recalls and we've seen small ones. Some involve millions of vehicles, and some - like the Infiniti Q50 recall on which we reported just the other day - involve just a couple dozen. But this has to be the smallest recall we've seen yet.
"Due to a production process error" in the BMW X3, states the National Highway Traffic Safety Administration in the notice below, "the team seam on the instrument panel was not manufactured correctly." Big friggin' whoop, you say? Well, NHTSA points out that it could hinder the deployment of the airbag and send fractures flying everywhere.
The problem was discovered in a select few examples of the 2013 BMW X3 - both xDrive 28i and 35i models - manufactured in the later part of February this year. And by "select few," we literally mean a few - as in three. Three examples are being recalled. If you happen to be one of those three owners, expect to hear from your local dealership.

8 automakers, 15 utilities collaborate on open smart-charging for EVs

We're going to lead with General Motors here. GM is one of eight automakers working with 15 utilities and the Electric Power Research Institute (EPRI) at developing a "smart" plug-in vehicle charging system. Why did we start with GM? Because it's the first automaker whose press release we read that mentioned the other seven automakers. Points for sharing. For the record, the collaboration also includes BMW, Toyota, Mercedes-Benz, Honda, Chrysler, Mitsubishi and Ford. The utilities include DTE Energy, Duke Energy, Southern California Edison and Pacific Gas & Electric. The idea is to develop a so-called "demand charging" system in which an integrated system lets the plug-ins and utilities communicate with each other so that vehicle charging is cut back at peak hours, when energy is most expensive, and ramped up when the rates drop. Such entities say there's a sense of urgency to develop such a system because the number of plug-in vehicles on US roads totals more than 225,000 today and is climbing steadily. There's a lot of technology involved, obviously, but the goal is to have an open platform that's compatible with virtually any automaker's plug-in vehicle. No timeframe was disclosed for when such a system could go live but you can find a press release from EPRI below. EPRI, Utilities, Auto Manufacturers to Create an Open Grid Integration Platform for Plug-in Electric Vehicles PALO ALTO, Calif. (July 29, 2014) – The Electric Power Research Institute, 8 automakers and 15 utilities are working to develop and demonstrate an open platform that would integrate plug-in electric vehicles (PEV) with smart grid technologies enabling utilities to support PEV charging regardless of location. The platform will allow manufacturers to offer a customer-friendly interface through which PEV drivers can more easily participate in utility PEV programs, such as rates for off-peak or nighttime charging. The portal for the system would be a utility's communications system and an electric vehicle's telematics system. As the electric grid evolves with smarter functionality, electric vehicles can serve as a distributed energy resource to support grid reliability, stability and efficiency. With more than 225,000 plug-in vehicles on U.S. roads -- and their numbers growing -- they are likely to play a significant role in electricity demand side management.