2014 Chrysler Town & Country Touring-l on 2040-cars

Auto blog

Jeep in St. Louis hacked from Pittsburgh

One of America's most popular vehicles contains a security flaw that allows hackers to remotely commandeer it from anywhere on the planet. Cyber-security researchers Chris Valasek and Charlie Miller say they've accessed critical vehicle controls on a 2014 Jeep Cherokee that allowed them to remotely control critical vehicle functions like braking, transmission function, and steering. Automakers have downplayed the possibility a car could be remotely compromised, but the significance of the findings detailed Tuesday could cause them to reevaluate the threats posed to hundreds of thousands of vehicles already on the road. A key finding – the pair needed no physical access to the Jeep to pull off the attack. Valasek and Miller accessed the controls via a security hole in the Sprint cellular connection to Chrysler's UConnect infotainment system. In the course of their research, Valasek sat in his Pittsburgh home and remotely manipulated Miller's Jeep as he drove along a highway outside St. Louis. If you know a car's IP address, they say, a hacker could control it from anywhere. "We didn't add anything, didn't touch it," Valasek told Autoblog. "A customer could drive one of these things off a lot, and they'd have no clue it had these open attack surfaces." Remotely, he disabled brakes, turned the radio volume up, engaged windshield wipers and tampered with the transmission. Further, they could conduct surveillance on the Jeep, measuring its speed and tracking its whereabouts. They conducted the experiments over multiple breaches. They made their findings public on the same day the National Highway Traffic Safety Administration, the federal agency in charge of vehicle safety, released its latest report on the readiness of government and automakers to fend off these sorts of cyber attacks. Later today, two US Senators are expected to introduce legislation that would help consumers better understand the potential risks of car hacking. In the early stages of their research, Valasek and Miller found a security flaw in the car's wi-fi that allowed them to remotely manipulate controls from a range of about three feet. But in recent months, they found another vulnerability in the Sprint cellular connection in the UConnect system. That was a key breakthrough. "Lo and behold, we found we could communicate with this thing using cellular, and then more research, and 'Holy cow,' we're using the Sprint network to communicate with these vehicles," Valasek said.

NYT profiles Blue Nelson, a reclusive and interesting CA car collector

If it weren't for his Dale Earnhardt Sr. looks, Blue Nelson could be one one of those soft-spoken, nondescript guys whom you meet briefly and never learn much more about. However, as The New York Times shows in a recent profile and video, behind closed doors, Nelson keeps a fascinatingly eclectic collection of automotive oddities and vintage bicycles.
While his main career is in the movie industry, Nelson's other job is as a car hunter. He takes on clients searching for a specific model and helps them find and restore the dream vehicle that they're after. Hiring him takes some dedication, though, because Nelson doesn't advertise his services. "If people want to find me, they know how to find me," he says in the video.
Beyond being an automotive private detective, Nelson has a fantastically varied collection of vehicles of his own. He likes to have models that people don't usually see, and his garage holds a classic Chrysler New Yorker and an extremely rare Rometsch convertible. Although, the one that means the most to him is the 1962 Porsche 356 convertible that Blue came home in as a baby. Check out the video to learn more about Nelson and his philosophy about forming a bond with a car.

Jeep still working to improve Cherokee's 9-speed auto

Fiat Chrysler is hoping an upcoming software update will stem the tide of consumer complaints surrounding its nine-speed automatic transmission. Owners of the 2014 Jeep Cherokee have reported a number of problems on the National Highway Traffic Safety Administration's SaferCar.gov website, since the new model and its troubled gearbox arrived way back in October 2013. The software update is "intended to keep the vehicle performing as intended, and to prevent durability issues from occurring in the future," an FCA spokesperson told Automotive News, and will be available to owners of both the 2014 to 2015 Jeep Cherokee and the 2015 Chrysler 200, which also uses the 9AT. While FCA will be notifying consumers of the update, owners can also request the software reflash if they happen into their dealer before then. Despite the widely documented problems with the transmission, the only complaints on NHTSA's website relate to the 2014 Cherokee – neither the 2015 Jeep nor the 200 have received any complaints. That bodes well as FCA prepares to begin deliveries of the 2015 Jeep Renegade and launch the Fiat 500X, both of which pair the 9AT with the 2.4-liter Tigershark four-cylinder. "We have had to do an inordinate amount of intervention on that transmission, surely beyond what any of us had forecast," FCA CEO Sergio Marchionne told Automotive News. "There are things that we have done – that we continue to do. Our proactive customer care intervention has actually increased in intensity on these vehicles in 2014, especially in the second half." What's fascinating about the 9AT's problems are that they haven't been the fault of manufacturer ZF, but have related to software that wasn't "mature" and had "teething problems," Marchionne has said previously, AN reports. With the lack of criticism for the 9AT in 2015 models and this pending software update, though, here's hoping that FCA has finally figured out its fuel-sipping gearbox. Related Video: