1969 Cj5 Jeep on 2040-cars

Auto blog

Jeep in St. Louis hacked from Pittsburgh

One of America's most popular vehicles contains a security flaw that allows hackers to remotely commandeer it from anywhere on the planet. Cyber-security researchers Chris Valasek and Charlie Miller say they've accessed critical vehicle controls on a 2014 Jeep Cherokee that allowed them to remotely control critical vehicle functions like braking, transmission function, and steering. Automakers have downplayed the possibility a car could be remotely compromised, but the significance of the findings detailed Tuesday could cause them to reevaluate the threats posed to hundreds of thousands of vehicles already on the road. A key finding – the pair needed no physical access to the Jeep to pull off the attack. Valasek and Miller accessed the controls via a security hole in the Sprint cellular connection to Chrysler's UConnect infotainment system. In the course of their research, Valasek sat in his Pittsburgh home and remotely manipulated Miller's Jeep as he drove along a highway outside St. Louis. If you know a car's IP address, they say, a hacker could control it from anywhere. "We didn't add anything, didn't touch it," Valasek told Autoblog. "A customer could drive one of these things off a lot, and they'd have no clue it had these open attack surfaces." Remotely, he disabled brakes, turned the radio volume up, engaged windshield wipers and tampered with the transmission. Further, they could conduct surveillance on the Jeep, measuring its speed and tracking its whereabouts. They conducted the experiments over multiple breaches. They made their findings public on the same day the National Highway Traffic Safety Administration, the federal agency in charge of vehicle safety, released its latest report on the readiness of government and automakers to fend off these sorts of cyber attacks. Later today, two US Senators are expected to introduce legislation that would help consumers better understand the potential risks of car hacking. In the early stages of their research, Valasek and Miller found a security flaw in the car's wi-fi that allowed them to remotely manipulate controls from a range of about three feet. But in recent months, they found another vulnerability in the Sprint cellular connection in the UConnect system. That was a key breakthrough. "Lo and behold, we found we could communicate with this thing using cellular, and then more research, and 'Holy cow,' we're using the Sprint network to communicate with these vehicles," Valasek said.

FCA nears plea deal in diesel emissions fraud probe

Fiat Chrysler Automobiles (FCA) is nearing an agreement to plead guilty to criminal conduct to resolve a multiyear emissions fraud probe surrounding Ram pickup trucks and Jeep sport-utility vehicles with diesel engines, people familiar with the matter said. FCA lawyers and U.S. Justice Department officials are brokering a plea deal that could be unveiled in coming weeks and include financial penalties totaling between $250 million and $300 million, the people said. Such a resolution with FCA, which is now part of Stellantis NV, would come more than four years after Volkswagen AG pleaded guilty to criminal charges  to resolve its own diesel-emissions scandal involving nearly 600,000 vehicles.It would also mark the final significant chapter in the government crackdown on automakers' emissions practices that was precipitated by Volkswagen's deception, which became known as "Dieselgate." The FCA investigation focuses on roughly 100,000 diesel-powered vehicles that allegedly evaded emissions requirements. The plea negotiations are fluid and some terms, including the size of any financial penalties, could change as discussions continue, the people said. Justice Department officials are preparing paperwork that will likely be negotiated with FCA to finalize the plea deal, which could result in changes and also present an outside chance for the agreement to fall apart, the people said. A plea agreement would cap a series of investigations dating back to 2015 surrounding diesel-powered vehicles in FCA's U.S. lineup. The current criminal investigation targets the U.S unit of the Italian-American automaker. The affected vehicles span model years 2014 to 2016. Representatives for FCA parent Stellantis and the Justice Department declined to comment. The scandals over emissions cheating tarnished diesel technology and accelerated the industry's shift to electric vehicles. The European automakers had promoted "clean diesel" technology as a way to reduce carbon dioxide emissions and ease a transition to an all-electric future. When regulators on both sides of the Atlantic uncovered evidence that diesel vehicles polluted far more in real world driving, the argument for a slower transition to battery electric vehicles was shredded. Now, automakers are accelerating battery electric vehicle development to comply with tougher, post-Dieselgate pollution standards.

FCA CEO Mike Manley will take undefined new role after PSA merger

MILAN — Fiat Chrysler Chief Executive Mike Manley will remain with the new group set to result from a planned merger with French rival PSA-Peugeot, Chairman John Elkann said on Wednesday. In a letter to Fiat Chrysler (FCA) employees on the day the two companies announced a binding agreement for a $50 billion tie-up to create the world's fourth-largest carmaker, Elkann said he was "delighted" that the combined group would be led by current PSA CEO Carlos Tavares. "And Mike Manley, who has led FCA with huge energy, commitment and success over the past year, will be there alongside him," he said. He did not say what position Manley would hold. Elkann — who will chair the new group — said there was still much to be done to complete the merger. "Over the coming months we must work tirelessly and determinedly to fulfill all the approval requirements needed to finalize the commitment we have signed," he said. Related Video:     Hirings/Firings/Layoffs Chrysler Dodge Fiat Jeep RAM Citroen Peugeot FCA PSA merger Mike Manley carlos tavares