2019 Jeep Wrangler Rubicon 4x4 on 2040-cars

Auto blog

Jeep in St. Louis hacked from Pittsburgh

One of America's most popular vehicles contains a security flaw that allows hackers to remotely commandeer it from anywhere on the planet. Cyber-security researchers Chris Valasek and Charlie Miller say they've accessed critical vehicle controls on a 2014 Jeep Cherokee that allowed them to remotely control critical vehicle functions like braking, transmission function, and steering. Automakers have downplayed the possibility a car could be remotely compromised, but the significance of the findings detailed Tuesday could cause them to reevaluate the threats posed to hundreds of thousands of vehicles already on the road. A key finding – the pair needed no physical access to the Jeep to pull off the attack. Valasek and Miller accessed the controls via a security hole in the Sprint cellular connection to Chrysler's UConnect infotainment system. In the course of their research, Valasek sat in his Pittsburgh home and remotely manipulated Miller's Jeep as he drove along a highway outside St. Louis. If you know a car's IP address, they say, a hacker could control it from anywhere. "We didn't add anything, didn't touch it," Valasek told Autoblog. "A customer could drive one of these things off a lot, and they'd have no clue it had these open attack surfaces." Remotely, he disabled brakes, turned the radio volume up, engaged windshield wipers and tampered with the transmission. Further, they could conduct surveillance on the Jeep, measuring its speed and tracking its whereabouts. They conducted the experiments over multiple breaches. They made their findings public on the same day the National Highway Traffic Safety Administration, the federal agency in charge of vehicle safety, released its latest report on the readiness of government and automakers to fend off these sorts of cyber attacks. Later today, two US Senators are expected to introduce legislation that would help consumers better understand the potential risks of car hacking. In the early stages of their research, Valasek and Miller found a security flaw in the car's wi-fi that allowed them to remotely manipulate controls from a range of about three feet. But in recent months, they found another vulnerability in the Sprint cellular connection in the UConnect system. That was a key breakthrough. "Lo and behold, we found we could communicate with this thing using cellular, and then more research, and 'Holy cow,' we're using the Sprint network to communicate with these vehicles," Valasek said.

Toyota tops Kelley Blue Book's Resale Value Awards

Kelley Blue Book announced its annual Best Resale Value Award winners, and we weren't too surprised to see the list dominated by Japanese automakers - mainly Toyota and Honda. KBB hands out the awards based on the projected residual value of mostly all 2013 model year vehicles, and Toyota skated home with a number of awards including 10 of the 22 overall categories and having five of its products in the top 10 for models with best resale value. KBB's Best Resale Value Awards were announced in the same week as the ALG Residual Value Awards, and there were many similarities between both lists, especially when it came to Toyota.
To come up with its winners, KBB measures depreciation over the first five years of ownership, and looks for the cars it expects to hold its value the best after this time; on average, the report says the 2013 model year vehicles will lose 61.8 percent of its value in five years. Of the 22 categories, 15 slots were filled by Toyota, Honda and Nissan products, while the Camaro and Porsche (Cayenne and Panamera) each took home a pair of awards. If Toyota has anything to be upset about in this list of cars, it's that categories for Hybrid/Alternative Energy Car and Electric Vehicle went to the Ford Fusion and Chevrolet Volt, respectively.
The overall top 10 models for the best resale value in 2013 are, in alphabetical order:

FCA recalls 570,000 SUVs from Jeep and Dodge over fire woes

Fiat Chrysler US has issued two recalls covering a total of about 570,000 Jeep and Dodge models. The first concerns vanity mirror wiring in the Jeep Grand Cherokee from the 2011 and 2012 model years, and in Dodge Durango units built before September 12, 2012. The automaker recalled almost 900,000 units last year to repair the issue, then faced more issues this year when the fires continued in repaired vehicles. This new recall seeks to resolve the issue, FCA saying that the post-recall fires happened in a tiny percentage of vehicles equipped with a specific wiring package. This recall is for 352,831 total units in the US, another 26,478 in Canada, 13,037 in Mexico, and 84,330 internationally. No injuries or deaths have been reported. FCA says it will inform customers as to when they can schedule a service visit to remedy the issue. The second recall takes aim at 60,107 examples of the Jeep Compass and Patriot from the 2015 model year in the US, plus 5,755 in Canada, 3,351 in Mexico, and 23,995 in other markets. Those models could suffer from an out-of-position clamp on the power steering fluid line. The error could allow fluid to leak, increasing the risk of a fire if the fluid ends up on a hot surface. In the case of a complete loss of fluid, drivers will need to use a lot more effort to steer. The automaker reports no injuries or accidents, and will advise customers when to head to the dealer for service. Related Video: Jeep Grand Cherokee and Dodge DurangoStatement: Vanity-Mirror WiringDecember 24, 2015 , Auburn Hills, Mich. - FCA US LLC is recalling an estimated 352,831 SUVs in the U.S. to help ensure vanity-mirror wiring may be serviced more consistently.Overheating conditions were reported among a small percentage of vehicles (<0.02%) serviced in connection with a related recall, conducted previously.** An FCA US LLC investigation discovered the service procedure, if not followed precisely, may leave vehicles susceptible to a short-circuit, creating a potential fire hazard.The Company is unaware of any related injuries or accidents. Post-service overheating conditions were observed only in vehicles equipped with a certain wiring package. These vehicles were produced before Sept. 2, 2012.Affected are model-year 2011-2012 Jeep Grand Cherokee and Dodge Durango SUVs produced before Sept. 2, 2012. Wiring in the headliners of these vehicles will be secured with a new adhesive.