2014 Jeep Wrangler Unlimited Rubicon on 2040-cars

Auto blog

Feds fretting over remote hack of Jeep Cherokee

A cyber-security gap that allowed for the remote hacking of a Jeep Cherokee has federal officials concerned. An associate administrator with the National Highway Traffic Safety Administration said Thursday that news of the breach conducted by researchers Chris Valasek and Charlie Miller had "floated around the entire federal government." "The Homeland Security folks sent out broadcasts that, 'Here's an issue that needs to be addressed,'" said Nathaniel Beuse, an associate administrator with the National Highway Traffic Safety Administration. Valasek and Miller commandeered remote control of the Cherokee through a security flaw in the cellular connection to the car's Uconnect infotainment system. From his Pittsburgh home, Valasek manipulated critical safety inputs, such as transmission function, on Miller's Jeep as he drove along a highway near St. Louis, MO. The scope of the remote breach is believed to be the first of its kind. The prominent cyber-security researchers needed no prior access to the vehicle to perform the hack, and the scope of the remote breach is believed to be the first of its kind. A NHTSA spokesperson said the agency's cyber-security staff members are "putting their expertise to work assessing this threat and the response, and we will take action if we determine it's necessary to protect safety." A Homeland Security spokesperson referred questions about the hack to Chrysler. Fiat Chrysler Automobiles has already been the subject of a federal hearing this month, in which officials scrutinized whether the company had adequately fixed recalled vehicles and repeatedly failed to notify the government about defects. But cyber-security concerns are a new and different species for the regulatory agency. Only hours before the Jeep hack was announced by Wired magazine earlier this week, NHTSA administrator Dr. Mark Rosekind said hacking vulnerabilities were a threat to privacy, safety, and the public's trust with new connected and autonomous technologies that allow vehicles to communicate. NHTSA outlined its response to the cyber-security challenges facing the industry in a report issued Tuesday. In it, the agency summarized its best practices for thwarting attacks and said it will analyze possible real-time infiltration responses. But the agency's ability to handle hackers may only go so far.

FCA recalling 323,000 cars for wiring, software issues

The Basics: Fiat Chrysler Automobiles (FCA) is conducting a voluntary recall for an estimated 323,361 cars in the US. The affected vehicles were built after September 23, 2014 and include: the 2015 Chrysler 200, Ram ProMaster City, Jeep Renegade, and 2014 and 2015 Jeep Cherokees. The Problem: An insufficient crimp in the vehicles' wiring harness may result in a solenoid fault code, which could cause the engine to stop. The loss of power could lead to an accident. Injuries/Deaths: None reported. The Fix: FCA will update the affected vehicles' software and replace wire harnesses, as needed. According to FCA, owners that experience the problem can temporarily resolve the issue by restarting the vehicle. If you own one: FCA is reaching out to owners to schedule a service. Related Video: Statement: Wire Harness Crimp July 22, 2016 , Auburn Hills, Mich. - FCA US LLC is voluntarily recalling an estimated 323,361 vehicles in the U.S. to update certain software and replace wire harnesses, as needed. An examination of warranty data led to an FCA US investigation that discovered an insufficient crimp in a wire harness. Such a crimp may lead to a solenoid fault code that can cause propulsion loss. The Company is unaware of any related injuries or accidents. Most vehicles in the recall population will not experience this fault code over their lifetimes. However, should the condition occur, it can typically be temporarily resolved by stopping the vehicle and re-starting its engine. Accordingly, FCA US urges customers to heed the instructions on their recall notices. Affected are certain model-year 2015 Chrysler 200 midsize sedans, Ram ProMaster City small vans, Jeep Renegade and Cherokee SUVs. Certain model-year 2014 Cherokees are also affected. A change made in the harness-manufacturing process eliminates the need to recall any vehicle built after Sept. 23, 2014. An estimated 35,511 additional vehicles in Canada are included in the campaign; as are 7,067 in Mexico; and 43,927 outside the NAFTA region. Customers will be advised when they may schedule service. Those with questions may call the FCA US Customer Care Center at 1-800-853-1403. News Source: FCAImage Credit: AOL Recalls Chrysler Jeep RAM FCA jeep renegade ram promaster city

Chrysler, Nissan looking into claim that their cars are industry's most hackable

A pair of cyber security experts have awarded the ignominious title of most hackable vehicles on American roads to the 2014 Jeep Cherokee, 2014 Infiniti Q50 and 2015 Cadillac Escalade.
Charlie Miller and Chris Valasek are set to release a report at the Black Hat hacking conference in Las Vegas, Automotive News reports. The two men found the Jeep, Caddy and Q50 were easiest to hack based not on actual tests with the vehicles, but a detailed analysis of systems like Bluetooth and wireless internet access - basically, anything that'd allow a hacker to remotely gain access to the vehicle's systems.
Considering this lack of hands-on testing, the pair acknowledge that "most hackable" could be a relative term - they point out that the vehicles may actually be quite secure.