2007 Chrysler Sebring Touring on 2040-cars

Auto blog

Jeep in St. Louis hacked from Pittsburgh

One of America's most popular vehicles contains a security flaw that allows hackers to remotely commandeer it from anywhere on the planet. Cyber-security researchers Chris Valasek and Charlie Miller say they've accessed critical vehicle controls on a 2014 Jeep Cherokee that allowed them to remotely control critical vehicle functions like braking, transmission function, and steering. Automakers have downplayed the possibility a car could be remotely compromised, but the significance of the findings detailed Tuesday could cause them to reevaluate the threats posed to hundreds of thousands of vehicles already on the road. A key finding – the pair needed no physical access to the Jeep to pull off the attack. Valasek and Miller accessed the controls via a security hole in the Sprint cellular connection to Chrysler's UConnect infotainment system. In the course of their research, Valasek sat in his Pittsburgh home and remotely manipulated Miller's Jeep as he drove along a highway outside St. Louis. If you know a car's IP address, they say, a hacker could control it from anywhere. "We didn't add anything, didn't touch it," Valasek told Autoblog. "A customer could drive one of these things off a lot, and they'd have no clue it had these open attack surfaces." Remotely, he disabled brakes, turned the radio volume up, engaged windshield wipers and tampered with the transmission. Further, they could conduct surveillance on the Jeep, measuring its speed and tracking its whereabouts. They conducted the experiments over multiple breaches. They made their findings public on the same day the National Highway Traffic Safety Administration, the federal agency in charge of vehicle safety, released its latest report on the readiness of government and automakers to fend off these sorts of cyber attacks. Later today, two US Senators are expected to introduce legislation that would help consumers better understand the potential risks of car hacking. In the early stages of their research, Valasek and Miller found a security flaw in the car's wi-fi that allowed them to remotely manipulate controls from a range of about three feet. But in recent months, they found another vulnerability in the Sprint cellular connection in the UConnect system. That was a key breakthrough. "Lo and behold, we found we could communicate with this thing using cellular, and then more research, and 'Holy cow,' we're using the Sprint network to communicate with these vehicles," Valasek said.

Fiat to list on New York Stock Exchange?

Citing the ever-nebulous "two sources close to Fiat," Reuters is reporting that the Italian automaker and owner of the Chrysler brand is likely to list itself on the New York Stock Exchange. The move could reportedly happen as soon as 2015, marking the end, at least in the minds of investors, of Fiat's 115-year base in Turin, Italy.
The Italian government is not likely to react favorably to Fiat's potential move from Italy to the United States, despite initially positive reactions to Fiat's landmark final purchase of Chrysler, the third-largest automaker in the US. Fiat spent $3.65 billion to buy out the 41.46-percent stake in Chrysler that had been owned by the United Auto Workers' VEBA trust fund.
With little sign of a swift European recovery, Fiat has little choice but to focus on markets outside its traditional home, and a listing in New York could potentially be a boon for investors. According to International Strategy and Investment analyst George Galliers, speaking to Reuters, "People [would be] more likely to think of the entity in the same context as they do Ford and GM" if it were listed on the NYSE.

Chrysler develops fix for Pacifica PHEV minivan fires

In February, Stellantis recalled 19,808 examples of the 2017 and 2018 Chrysler Pacifica plug-in hybrid minivan due to reports of fires in 12 vehicles. The minivans were manufactured between August 12, 2016, and August 7, 2018. All were parked and turned off when they caught fire; eight of them were plugged in and charging. While engineers worked to isolate the source of the fires, Chrysler advised what's become standard practice in the case of electrical-related fire risks: For owners to park outside away from other objects that could catch on fire. Since then, there have been two more fires in Pacifica PHEVs and the first report of a minor injury because of a fire. Chrysler says it's developed a solution to return the minivan to normal operation and is notifying owners now. The fix is a trip to the dealer to have upgraded software installed for the High Voltage Battery Pack Control Module (BPCM) that manages the 16-kWh lithium-ion battery. Dealers will also inspect the battery pack and replace it if necessary. Of note, Chrysler says it hasn't definitively pinned down the cause of the fires, but it understands the conditions that can lead to the fires. The software's been updated to address these preconditions, the automaker telling Green Car Reports it "has validated its remedy." Owners should continue to park outside and away from structures and refrain from plug-in charging until their vans are fixed, after which they can "resume vehicle operation as outlined in their owners’ manuals." The repair will take from 1.5 to two days; a rental or courtesy car will be provided free of charge.  Stellantis has already begun sending letters to owners. Those with questions can contact their Chrysler dealerships, or get in touch with Chrysler customer service at 800-853-1403 and refer to recall number Z11. They can also call the National Highway Traffic Safety Association (NHTSA) Vehicle Safety Hotline at 888-327-4236 (TTY 1-800-424-9153) and mention campaign number 22V077.