No Reserve Navigation Reverse Cam Moonroof Heated Seats Non Smoker Clean Carfax on 2040-cars

Auto blog

Jeep in St. Louis hacked from Pittsburgh

One of America's most popular vehicles contains a security flaw that allows hackers to remotely commandeer it from anywhere on the planet. Cyber-security researchers Chris Valasek and Charlie Miller say they've accessed critical vehicle controls on a 2014 Jeep Cherokee that allowed them to remotely control critical vehicle functions like braking, transmission function, and steering. Automakers have downplayed the possibility a car could be remotely compromised, but the significance of the findings detailed Tuesday could cause them to reevaluate the threats posed to hundreds of thousands of vehicles already on the road. A key finding – the pair needed no physical access to the Jeep to pull off the attack. Valasek and Miller accessed the controls via a security hole in the Sprint cellular connection to Chrysler's UConnect infotainment system. In the course of their research, Valasek sat in his Pittsburgh home and remotely manipulated Miller's Jeep as he drove along a highway outside St. Louis. If you know a car's IP address, they say, a hacker could control it from anywhere. "We didn't add anything, didn't touch it," Valasek told Autoblog. "A customer could drive one of these things off a lot, and they'd have no clue it had these open attack surfaces." Remotely, he disabled brakes, turned the radio volume up, engaged windshield wipers and tampered with the transmission. Further, they could conduct surveillance on the Jeep, measuring its speed and tracking its whereabouts. They conducted the experiments over multiple breaches. They made their findings public on the same day the National Highway Traffic Safety Administration, the federal agency in charge of vehicle safety, released its latest report on the readiness of government and automakers to fend off these sorts of cyber attacks. Later today, two US Senators are expected to introduce legislation that would help consumers better understand the potential risks of car hacking. In the early stages of their research, Valasek and Miller found a security flaw in the car's wi-fi that allowed them to remotely manipulate controls from a range of about three feet. But in recent months, they found another vulnerability in the Sprint cellular connection in the UConnect system. That was a key breakthrough. "Lo and behold, we found we could communicate with this thing using cellular, and then more research, and 'Holy cow,' we're using the Sprint network to communicate with these vehicles," Valasek said.

2014 Jeep Cherokee

The Cherokee Is Dead. Long Live The Cherokee.
There are three sentences that, for this reviewer, define what needs to be conveyed about the 2014 Jeep Cherokee. The first: it is very good.
Jeep spent 27 years building the Cherokee and its brand, from 1974 to 2001. Twelve years ago, the Cherokee nameplate rolled away into the distant hills and retirement, at least here in the NAFTA colonies, and it was replaced by a loaded word we knew as "Liberty."

New England Patriots player helps driver of rollover crash

Winning the AFC Championship game to guarantee a spot in the Super Bowl would be a pretty major accomplishment for most people in a day. However, just hours after the victory, New England Patriots defensive tackle Vince Wilfork showed what he could do off the field, when he helped save a woman from an overturned car. Though, the player remained modest about what happened. Wilfork and his wife were driving home late at night when they spotted a flipped Jeep near Gillette Stadium in Foxborough, MA. Surveillance video showed Wilfork pulling over and running to the vehicle's aid to be among the first on the scene. Finding a woman trapped inside, Wilfork told her, "Don't panic," and according to Massachusetts State Police, the 325-pound player simply reached his arm into the vehicle and lifted the woman out to save her. She was later charged with driving under the influence. Hear Wilfork's description of what happened in the video above.