2003 Jeep Wrangler 2dr X - Carfax, Warranty, Manual, Clean, Great Tires! on 2040-cars

Auto blog

Are future vehicular hacks inevitable?

Before the hack of the Uconnect system in a Jeep Cherokee resulted in a 1.4-million vehicle recall, the potential software vulnerabilities in vehicles were already a hot topic with Congressional inquiries and even proposed legislation in the US. As cars' interconnected systems gain the ability to go online, they become open to a host of new threats. Automakers are trying to stop this, but it might be too late to put the genie back into the bottle. Throughout 2015, the issue of software security in vehicles has become increasingly vital. For example, the recent Jeep case wasn't even the biggest hack this year. In February, a major flaw was discovered in the BMW Connected Drive service that allowed researchers to remotely lock and unlock the doors and potentially affected 2.2 million cars. The fix was an over-the-air patch for the problem. Automakers are actively working to fix the issues. Mercedes-Benz, BMW, and Audi reportedly are using encrypted connections and firewalls in their vehicles to prevent hacking. "Absolute, 100-percent safety isn't possible," Daimler spokesperson Benjamin Oberkersch said to Automotive News Europe. "But we develop our systems, tested by internal and external experts, so they're up to date." These vulnerabilities seem to be popping up more often. A successful hack took $14 in parts from Radio Shack in one case. There was also a 60 Minutes report earlier in the year about DARPA's ability to hack into OnStar to take control of a Chevrolet Impala. Experts aren't so sure companies can contend with hackers' advancement. "The difficulty for the carmakers at the moment is the question whether they can keep pace with advances in technology, and especially hacking technology," Rainer Scholz, executive director for telematics consultant EY, said to Automotive News Europe. "We seriously doubt they can." At this point, vehicle hacks are coming more from researchers looking for holes than from those with malicious intent. Still, the vulnerabilities are definitely there. It's up to automakers to keep patching the problems before they become dangerous to drivers. Related Video: News Source: Automotive News Europe - sub. req.Image Credit: Bill O'Leary / The Washington Post via Getty Images Audi BMW Jeep Mercedes-Benz Safety Technology Emerging Technologies hacking cyber security

Massachusetts man charged $48,000 for a tow [w/video]

Tow truck operators are right up there with landlords and IRS auditors on the list of professionals you don't want to deal with. A man in Massachusetts has all the more reason to avoid a tow after he was hit with a $48,000 bill, Fox 25 reports. Joel Ramer and his girlfriend were off-roading in Walpole, MA last week when they wandered were they shouldn't have. They landed in a mud pit on private property. Ramer said it took Assured Collision towing company 12 hours to free his vehicle from the muck. But when he got the bill for the tow, he thought the accounting department must have been off by a decimal. "When I went to pick up the vehicle from Assured Collision, he'd informed me there was some damage done to the vehicle, but didn't get into details. He also informed me the bill was $48,000," Ramer told Fox. "I thought they made a mistake." The phrase 'some damage' was putting it lightly. Ramer says Assured Collision totaled his Jeep. "Frame is broken, leaf spring is broken, drive shaft is broken," Ramer said. The itemized bill showed Ramer exactly what he was paying for. Assured Collision charged him $16,000 for an on-scene supervisor. That's $1,250 an hour. The Statewide Towing Association told Fox 25 that the actual industry standard is $175-$325 an hour. The company also claimed that power lines put them at risk, calling it a "hazmat situation." That allowed them to tack on another $5,000 fee for dangerous condition liability insurance. Finally, there was an extra $10,000 fee for an off-road recovery incident response unit. Insurance won't help with the cost of the tow, so Ramer's broke Jeep is in Assured Collision's hands. On top of the enormous bill and busted Jeep, Ramer was arrested and cited for trespassing on land owned by a utility company and disturbing the peace. Boston News, Weather, Sports | FOX 25 | MyFoxBoston

Feds fretting over remote hack of Jeep Cherokee

A cyber-security gap that allowed for the remote hacking of a Jeep Cherokee has federal officials concerned. An associate administrator with the National Highway Traffic Safety Administration said Thursday that news of the breach conducted by researchers Chris Valasek and Charlie Miller had "floated around the entire federal government." "The Homeland Security folks sent out broadcasts that, 'Here's an issue that needs to be addressed,'" said Nathaniel Beuse, an associate administrator with the National Highway Traffic Safety Administration. Valasek and Miller commandeered remote control of the Cherokee through a security flaw in the cellular connection to the car's Uconnect infotainment system. From his Pittsburgh home, Valasek manipulated critical safety inputs, such as transmission function, on Miller's Jeep as he drove along a highway near St. Louis, MO. The scope of the remote breach is believed to be the first of its kind. The prominent cyber-security researchers needed no prior access to the vehicle to perform the hack, and the scope of the remote breach is believed to be the first of its kind. A NHTSA spokesperson said the agency's cyber-security staff members are "putting their expertise to work assessing this threat and the response, and we will take action if we determine it's necessary to protect safety." A Homeland Security spokesperson referred questions about the hack to Chrysler. Fiat Chrysler Automobiles has already been the subject of a federal hearing this month, in which officials scrutinized whether the company had adequately fixed recalled vehicles and repeatedly failed to notify the government about defects. But cyber-security concerns are a new and different species for the regulatory agency. Only hours before the Jeep hack was announced by Wired magazine earlier this week, NHTSA administrator Dr. Mark Rosekind said hacking vulnerabilities were a threat to privacy, safety, and the public's trust with new connected and autonomous technologies that allow vehicles to communicate. NHTSA outlined its response to the cyber-security challenges facing the industry in a report issued Tuesday. In it, the agency summarized its best practices for thwarting attacks and said it will analyze possible real-time infiltration responses. But the agency's ability to handle hackers may only go so far.