1979 Jeep Cj-7 on 2040-cars

Auto blog

Are future vehicular hacks inevitable?

Before the hack of the Uconnect system in a Jeep Cherokee resulted in a 1.4-million vehicle recall, the potential software vulnerabilities in vehicles were already a hot topic with Congressional inquiries and even proposed legislation in the US. As cars' interconnected systems gain the ability to go online, they become open to a host of new threats. Automakers are trying to stop this, but it might be too late to put the genie back into the bottle. Throughout 2015, the issue of software security in vehicles has become increasingly vital. For example, the recent Jeep case wasn't even the biggest hack this year. In February, a major flaw was discovered in the BMW Connected Drive service that allowed researchers to remotely lock and unlock the doors and potentially affected 2.2 million cars. The fix was an over-the-air patch for the problem. Automakers are actively working to fix the issues. Mercedes-Benz, BMW, and Audi reportedly are using encrypted connections and firewalls in their vehicles to prevent hacking. "Absolute, 100-percent safety isn't possible," Daimler spokesperson Benjamin Oberkersch said to Automotive News Europe. "But we develop our systems, tested by internal and external experts, so they're up to date." These vulnerabilities seem to be popping up more often. A successful hack took $14 in parts from Radio Shack in one case. There was also a 60 Minutes report earlier in the year about DARPA's ability to hack into OnStar to take control of a Chevrolet Impala. Experts aren't so sure companies can contend with hackers' advancement. "The difficulty for the carmakers at the moment is the question whether they can keep pace with advances in technology, and especially hacking technology," Rainer Scholz, executive director for telematics consultant EY, said to Automotive News Europe. "We seriously doubt they can." At this point, vehicle hacks are coming more from researchers looking for holes than from those with malicious intent. Still, the vulnerabilities are definitely there. It's up to automakers to keep patching the problems before they become dangerous to drivers. Related Video: News Source: Automotive News Europe - sub. req.Image Credit: Bill O'Leary / The Washington Post via Getty Images Audi BMW Jeep Mercedes-Benz Safety Technology Emerging Technologies hacking cyber security

Feds fretting over remote hack of Jeep Cherokee

A cyber-security gap that allowed for the remote hacking of a Jeep Cherokee has federal officials concerned. An associate administrator with the National Highway Traffic Safety Administration said Thursday that news of the breach conducted by researchers Chris Valasek and Charlie Miller had "floated around the entire federal government." "The Homeland Security folks sent out broadcasts that, 'Here's an issue that needs to be addressed,'" said Nathaniel Beuse, an associate administrator with the National Highway Traffic Safety Administration. Valasek and Miller commandeered remote control of the Cherokee through a security flaw in the cellular connection to the car's Uconnect infotainment system. From his Pittsburgh home, Valasek manipulated critical safety inputs, such as transmission function, on Miller's Jeep as he drove along a highway near St. Louis, MO. The scope of the remote breach is believed to be the first of its kind. The prominent cyber-security researchers needed no prior access to the vehicle to perform the hack, and the scope of the remote breach is believed to be the first of its kind. A NHTSA spokesperson said the agency's cyber-security staff members are "putting their expertise to work assessing this threat and the response, and we will take action if we determine it's necessary to protect safety." A Homeland Security spokesperson referred questions about the hack to Chrysler. Fiat Chrysler Automobiles has already been the subject of a federal hearing this month, in which officials scrutinized whether the company had adequately fixed recalled vehicles and repeatedly failed to notify the government about defects. But cyber-security concerns are a new and different species for the regulatory agency. Only hours before the Jeep hack was announced by Wired magazine earlier this week, NHTSA administrator Dr. Mark Rosekind said hacking vulnerabilities were a threat to privacy, safety, and the public's trust with new connected and autonomous technologies that allow vehicles to communicate. NHTSA outlined its response to the cyber-security challenges facing the industry in a report issued Tuesday. In it, the agency summarized its best practices for thwarting attacks and said it will analyze possible real-time infiltration responses. But the agency's ability to handle hackers may only go so far.

Jeep Grand Cherokee Trailhawk and a Final Four of automakers | Autoblog Podcast #723

In this episode of the Autoblog Podcast, Editor-in-Chief Greg Migliore is joined by Consumer Editor Jeremy Korzeniewski. We start out with news on the Lotus Eletre and Ferrari Purosangue. These two high-end crossovers are followed by discussions about the new inline-six engines from Stellantis and an overabundance of Hummer EV orders. Next we try something we've never tried before: ranking automaker blue bloods. We took inspiration from the current NCAA tournament, which features Duke, North Carolina, Villanova and Kansas — very much traditional blue-blood basketball programs — to name our Final Four automakers. Let us know if you agree or disagree with our picks and what your definition of a blue blood car brand is. We wrap up with a discussion about the Jeep Grand Cherokee Trailhawk that Jeremy's been driving all week. Send us your questions for the Mailbag and Spend My Money at: Podcast@Autoblog.com. Autoblog Podcast #723 Get The Podcast Apple Podcasts – Subscribe to the Autoblog Podcast in iTunes Spotify – Subscribe to the Autoblog Podcast on Spotify RSS – Add the Autoblog Podcast feed to your RSS aggregator MP3 – Download the MP3 directly Rundown Lotus Eletre Ferrari Purosangue Stellantis inline-six Hummer EV orders Cars we're driving Jeep Grand Cherokee Trailhawk Feedback Email – Podcast@Autoblog.com Review the show on Apple Podcasts Autoblog is now live on your smart speakers and voice assistants with the audio Autoblog Daily Digest. Say “Hey Google, play the news from Autoblog” or "Alexa, open Autoblog" to get your favorite car website in audio form every day. A narrator will take you through the biggest stories or break down one of our comprehensive test drives. Related video: This content is hosted by a third party. To view it, please update your privacy preferences. Manage Settings. Green Podcasts Ferrari Hummer Jeep Lotus Crossover SUV Electric Luxury Off-Road Vehicles Performance