2013 Jeep Compass Sport on 2040-cars

Auto blog

Jeep in St. Louis hacked from Pittsburgh

One of America's most popular vehicles contains a security flaw that allows hackers to remotely commandeer it from anywhere on the planet. Cyber-security researchers Chris Valasek and Charlie Miller say they've accessed critical vehicle controls on a 2014 Jeep Cherokee that allowed them to remotely control critical vehicle functions like braking, transmission function, and steering. Automakers have downplayed the possibility a car could be remotely compromised, but the significance of the findings detailed Tuesday could cause them to reevaluate the threats posed to hundreds of thousands of vehicles already on the road. A key finding – the pair needed no physical access to the Jeep to pull off the attack. Valasek and Miller accessed the controls via a security hole in the Sprint cellular connection to Chrysler's UConnect infotainment system. In the course of their research, Valasek sat in his Pittsburgh home and remotely manipulated Miller's Jeep as he drove along a highway outside St. Louis. If you know a car's IP address, they say, a hacker could control it from anywhere. "We didn't add anything, didn't touch it," Valasek told Autoblog. "A customer could drive one of these things off a lot, and they'd have no clue it had these open attack surfaces." Remotely, he disabled brakes, turned the radio volume up, engaged windshield wipers and tampered with the transmission. Further, they could conduct surveillance on the Jeep, measuring its speed and tracking its whereabouts. They conducted the experiments over multiple breaches. They made their findings public on the same day the National Highway Traffic Safety Administration, the federal agency in charge of vehicle safety, released its latest report on the readiness of government and automakers to fend off these sorts of cyber attacks. Later today, two US Senators are expected to introduce legislation that would help consumers better understand the potential risks of car hacking. In the early stages of their research, Valasek and Miller found a security flaw in the car's wi-fi that allowed them to remotely manipulate controls from a range of about three feet. But in recent months, they found another vulnerability in the Sprint cellular connection in the UConnect system. That was a key breakthrough. "Lo and behold, we found we could communicate with this thing using cellular, and then more research, and 'Holy cow,' we're using the Sprint network to communicate with these vehicles," Valasek said.

FCA recalling 323,000 cars for wiring, software issues

The Basics: Fiat Chrysler Automobiles (FCA) is conducting a voluntary recall for an estimated 323,361 cars in the US. The affected vehicles were built after September 23, 2014 and include: the 2015 Chrysler 200, Ram ProMaster City, Jeep Renegade, and 2014 and 2015 Jeep Cherokees. The Problem: An insufficient crimp in the vehicles' wiring harness may result in a solenoid fault code, which could cause the engine to stop. The loss of power could lead to an accident. Injuries/Deaths: None reported. The Fix: FCA will update the affected vehicles' software and replace wire harnesses, as needed. According to FCA, owners that experience the problem can temporarily resolve the issue by restarting the vehicle. If you own one: FCA is reaching out to owners to schedule a service. Related Video: Statement: Wire Harness Crimp July 22, 2016 , Auburn Hills, Mich. - FCA US LLC is voluntarily recalling an estimated 323,361 vehicles in the U.S. to update certain software and replace wire harnesses, as needed. An examination of warranty data led to an FCA US investigation that discovered an insufficient crimp in a wire harness. Such a crimp may lead to a solenoid fault code that can cause propulsion loss. The Company is unaware of any related injuries or accidents. Most vehicles in the recall population will not experience this fault code over their lifetimes. However, should the condition occur, it can typically be temporarily resolved by stopping the vehicle and re-starting its engine. Accordingly, FCA US urges customers to heed the instructions on their recall notices. Affected are certain model-year 2015 Chrysler 200 midsize sedans, Ram ProMaster City small vans, Jeep Renegade and Cherokee SUVs. Certain model-year 2014 Cherokees are also affected. A change made in the harness-manufacturing process eliminates the need to recall any vehicle built after Sept. 23, 2014. An estimated 35,511 additional vehicles in Canada are included in the campaign; as are 7,067 in Mexico; and 43,927 outside the NAFTA region. Customers will be advised when they may schedule service. Those with questions may call the FCA US Customer Care Center at 1-800-853-1403. News Source: FCAImage Credit: AOL Recalls Chrysler Jeep RAM FCA jeep renegade ram promaster city

NHTSA closes investigation into Jeep Liberty fires

The investigation that the National Highway Traffic Safety Administration opened into the Jeep Liberty in October 2013 has been closed. NHTSA received two (!) complaints about fires starting in the driver's door, thought to be caused by the master power window switch. The initial estimate was that 80,000 Libertys could be roped into a possible recall, but according to a report in the Detroit News the agency examined records for 425,000 Chrysler products that used the same window switch, including the Dodge Nitro and Chrysler Town & Country minivan.
After canvassing 265 warranty claims related to the master switches, NHTSA concluded that the rate of fires compared to the "large population of vehicles" was rather low, and that there was no trend pattern behind the few issues it did find. Perhaps with that, and the closure of the trailer hitch investigation, the Liberty can finally rest in peace.