2007 Jeep Compass Suv 22/27 Mpg 4-door**power Moon Roof**low Starting Price on 2040-cars

Auto blog

Jeep in St. Louis hacked from Pittsburgh

One of America's most popular vehicles contains a security flaw that allows hackers to remotely commandeer it from anywhere on the planet. Cyber-security researchers Chris Valasek and Charlie Miller say they've accessed critical vehicle controls on a 2014 Jeep Cherokee that allowed them to remotely control critical vehicle functions like braking, transmission function, and steering. Automakers have downplayed the possibility a car could be remotely compromised, but the significance of the findings detailed Tuesday could cause them to reevaluate the threats posed to hundreds of thousands of vehicles already on the road. A key finding – the pair needed no physical access to the Jeep to pull off the attack. Valasek and Miller accessed the controls via a security hole in the Sprint cellular connection to Chrysler's UConnect infotainment system. In the course of their research, Valasek sat in his Pittsburgh home and remotely manipulated Miller's Jeep as he drove along a highway outside St. Louis. If you know a car's IP address, they say, a hacker could control it from anywhere. "We didn't add anything, didn't touch it," Valasek told Autoblog. "A customer could drive one of these things off a lot, and they'd have no clue it had these open attack surfaces." Remotely, he disabled brakes, turned the radio volume up, engaged windshield wipers and tampered with the transmission. Further, they could conduct surveillance on the Jeep, measuring its speed and tracking its whereabouts. They conducted the experiments over multiple breaches. They made their findings public on the same day the National Highway Traffic Safety Administration, the federal agency in charge of vehicle safety, released its latest report on the readiness of government and automakers to fend off these sorts of cyber attacks. Later today, two US Senators are expected to introduce legislation that would help consumers better understand the potential risks of car hacking. In the early stages of their research, Valasek and Miller found a security flaw in the car's wi-fi that allowed them to remotely manipulate controls from a range of about three feet. But in recent months, they found another vulnerability in the Sprint cellular connection in the UConnect system. That was a key breakthrough. "Lo and behold, we found we could communicate with this thing using cellular, and then more research, and 'Holy cow,' we're using the Sprint network to communicate with these vehicles," Valasek said.

In Michigan, car hackers could face life imprisonment

Car hackers may not want to mess with vehicles in and around the Motor City. A pair of Michigan lawmakers introduced legislation Thursday that would punish anyone who infiltrates a vehicle's electronic systems with penalties as harsh as life imprisonment. Senate bill 927 says that "a person shall not intentionally access or cause access to be made to an electronic system of a motor vehicle to willfully destroy, damage, impair, alter or gain unauthorized control of the motor vehicle." Offenders will be deemed guilty of a felony, and may be imprisoned for any number of years up to life in prison. The proposed legislation is one of the first attempts nationally to address the consequences for car hacking, which has become a top concern throughout the auto industry. Critics have accused executives of being slow to respond to the threats, which were first known as long as six years ago but gained attention last July when a pair of researchers remotely controlled a Jeep Cherokee. In January, the industry established an Information Sharing and Analysis Center to collectively evaluate security measures and counter breaches. But the Michigan bill isn't noteworthy only because of the life penalty prescribed; it's noteworthy for what's missing in its details. Language in the bill doesn't delineate between independent cyber-security researchers and criminals who intend to inflict harm or havoc. Under its provisions, it's possible Charlie Miller, pictured below, and Chris Valasek, the researchers who demonstrated last summer that the Cherokee could be remotely commandeered and controlled, could face life behind bars. Provisions of the legislation that prevent a person from "altering" the motor vehicle could ensnare car enthusiasts or gearheads who tinker with electronic systems to boost performance, increase fuel efficiency or add aftermarket features. In that context, Senate Bill 927 seems like the latest measure in a running feud between independent researchers, gearheads and big automakers. Car companies don't like third parties poking around their electronic systems and would prefer the researchers not reveal security weaknesses. Researchers, on the other hand, say many carmakers are either slow to fix or unwilling to repair security holes unless they're able to publish their findings.

Watch thief steal Jeep Wrangler with laptop

Advancements in technology, especially those in the automotive sector, have made cars safer, easier to drive, and harder than ever to steal. But a recent incident in Houston, TX, reveals that the latest generation of hackers and thieves knows how to use modern tech for their own nefarious devices. A car thief was caught on camera using a small computer to pilfer a 2010 Jeep Wrangler parked in its owner's driveway. The video shows a man entering the Wrangler and after a few minutes on the laptop, driving away in the vehicle. According to the Wall Street Journal, Houston police believe the same method could have been used on four other occasions involving late-model Wranglers and Cherokees. While the short clip looks like something out of a movie, this isn't the first time a Jeep has been hacked. The theft took the pair of thieves roughly 13 minutes from the time the first person opens the hood (not shown) to when the car leaves the driveway. Alarmingly, the Houston police department isn't sure what the laptop is being used for, the Journal reports. A Fiat Chrysler official told the newspaper that the thieves in the Houston incident might be using tools that only dealers have access to, which would allow them to pair another key fob to the vehicle. While that explains how they got into the vehicle, it still doesn't explain how a laptop could be used to get the vehicle running – especially when automakers ( Fiat Chrysler, Tesla, and General Motors) have altered their cars' electronics to reduce hacking. Theft rates have dropped by 96 percent since 1990, according to The New York Times, but recent events show thieves are making their own advances, prompting increased cyber protection efforts from automakers, auto-parts suppliers, and the government. It will come into focus later this month when US Transportation secretary Anthony Foxx, Lyft CEO and co-founder Logan Green, and General Motors' chairman and CEO Mary Barra speak at a cybersecurity summit in Detroit. Related Video: News Source: The Wall Street Journal, The New York Times, Business Wire, YouTube Jeep Technology SUV Off-Road Vehicles Videos viral video hacking thieves