2000 Jeep Grand Cherokee Laredo Sport Utility 4-door 4.0l on 2040-cars

Auto blog

Jeep in St. Louis hacked from Pittsburgh

One of America's most popular vehicles contains a security flaw that allows hackers to remotely commandeer it from anywhere on the planet. Cyber-security researchers Chris Valasek and Charlie Miller say they've accessed critical vehicle controls on a 2014 Jeep Cherokee that allowed them to remotely control critical vehicle functions like braking, transmission function, and steering. Automakers have downplayed the possibility a car could be remotely compromised, but the significance of the findings detailed Tuesday could cause them to reevaluate the threats posed to hundreds of thousands of vehicles already on the road. A key finding – the pair needed no physical access to the Jeep to pull off the attack. Valasek and Miller accessed the controls via a security hole in the Sprint cellular connection to Chrysler's UConnect infotainment system. In the course of their research, Valasek sat in his Pittsburgh home and remotely manipulated Miller's Jeep as he drove along a highway outside St. Louis. If you know a car's IP address, they say, a hacker could control it from anywhere. "We didn't add anything, didn't touch it," Valasek told Autoblog. "A customer could drive one of these things off a lot, and they'd have no clue it had these open attack surfaces." Remotely, he disabled brakes, turned the radio volume up, engaged windshield wipers and tampered with the transmission. Further, they could conduct surveillance on the Jeep, measuring its speed and tracking its whereabouts. They conducted the experiments over multiple breaches. They made their findings public on the same day the National Highway Traffic Safety Administration, the federal agency in charge of vehicle safety, released its latest report on the readiness of government and automakers to fend off these sorts of cyber attacks. Later today, two US Senators are expected to introduce legislation that would help consumers better understand the potential risks of car hacking. In the early stages of their research, Valasek and Miller found a security flaw in the car's wi-fi that allowed them to remotely manipulate controls from a range of about three feet. But in recent months, they found another vulnerability in the Sprint cellular connection in the UConnect system. That was a key breakthrough. "Lo and behold, we found we could communicate with this thing using cellular, and then more research, and 'Holy cow,' we're using the Sprint network to communicate with these vehicles," Valasek said.

From Maseratis to rental cars | Autoblog Podcast #511

On this week's podcast, Mike Austin and David Gluckman are in a huddle room (again), because the studio was already taken (again). We talk about the all-wheel-drive Dodge Challenger GT (again), as well as the Jeep Wrangler, Maserati Levante, Miata RF (again), and then David waxes poetic on mediocre rental cars (or similar). The episode wraps up with the traditional doling out of Spend My Money buying advice, with some input from an S2000 owner on advice discussed last time. The rundown is below. Remember, if you have a car-related question you'd like us to answer or you want buying advice of your very own, send a message or a voice memo to podcast at autoblog dot com. (If you record audio of a question with your phone and get it to us, you could hear your very own voice on the podcast. Neat, right?) And if you have other questions or comments, please send those too. Autoblog Podcast #511 Topics and stories we mention Dodge Challenger GT Jeep Wrangler Unlimited Maserati Levante Mazda MX-5 Miata RF Used cars! Rundown Intro - 00:00 What we're driving - 06:11 Spend My Money - 32:45 Total Duration: 55:30 Get The Podcast iTunes – Subscribe to the Autoblog Podcast in iTunes RSS – Add the Autoblog Podcast feed to your RSS aggregator MP3 – Download the MP3 directly Feedback Email – Podcast at Autoblog dot com Review the show on iTunes Podcasts Dodge Jeep Maserati Mazda Nissan mazda mx-5 rf dodge challenger gt

Jeep 'trailer hitch' recall repair rates lag amidst reports of new death

The problem with exploding fuel tanks in the 1993-1998 Jeep Grand Cherokee and 2002-2007 Jeep Liberty in some rear collisions continues to be a problem for FCA US, formerly Chrysler. The campaign to fix the utility vehicles was first announced in June 2013 after 51 claimed fatalities, and the fixes reportedly began in January 2014. However, there continue to be new deaths blaming the problem in unrepaired models, according to The Detroit News, citing data from the Center for Auto Safety. The automaker initially refused NHTSA's pressuring to conduct a recall because the models met applicable crash standards when they were manufactured, but eventually, there was a compromise to inspect and fix about 1.56 million Jeeps. With the fuel tank located between the rear axle and bumper, the unusual fix was to install a trailer hitch for extra protection. The National Highway Traffic Safety Administration later agreed that the change would provide added safety in lower to medium speed crashes, but not high-speed crashes. The most recent fatality, according to The Detroit News, occurred on a Michigan freeway in November 2014 when a pregnant woman in a 2003 Liberty was rear-ended when traffic slowed. Her Jeep impacted the vehicle in front, rolled over and a fire resulted. The family reportedly plans to file a lawsuit against FCA. At issue has been the rate at which the vehicles are being fixed. In July 2014, the automaker estimated it could have all of the vehicles repaired by March 2015 thanks to additional hitch supplies. But by November, NHTSA claimed that only three percent of the recalled models had been fixed. FCA says it continues to work to notify owners, though. According to Chrysler spokesperson Eric Mayne to Autoblog, "We are processing approximately 1,200 vehicles per day. Every owner who schedules service is receiving service. As of Jan. 8, that total was 193,490." The company has also mailed out over two million notifications to owners, more than the number officially called in. Given the age of these Jeeps, many of them have had multiple owners, and historically, the older a vehicle is, the less likely the recall fixes are to be carried out. FCA is currently creating a video urging people to have the hitch installed to be released soon. News Source: The Detroit News [1], [2]Image Credit: Jeep Recalls Jeep Safety SUV FCA jeep liberty jeep safety