2005 Chrysler Crossfire Limited Convertible 43k Low Miles Leather Loaded Call!! on 2040-cars

Auto blog

Feds fretting over remote hack of Jeep Cherokee

A cyber-security gap that allowed for the remote hacking of a Jeep Cherokee has federal officials concerned. An associate administrator with the National Highway Traffic Safety Administration said Thursday that news of the breach conducted by researchers Chris Valasek and Charlie Miller had "floated around the entire federal government." "The Homeland Security folks sent out broadcasts that, 'Here's an issue that needs to be addressed,'" said Nathaniel Beuse, an associate administrator with the National Highway Traffic Safety Administration. Valasek and Miller commandeered remote control of the Cherokee through a security flaw in the cellular connection to the car's Uconnect infotainment system. From his Pittsburgh home, Valasek manipulated critical safety inputs, such as transmission function, on Miller's Jeep as he drove along a highway near St. Louis, MO. The scope of the remote breach is believed to be the first of its kind. The prominent cyber-security researchers needed no prior access to the vehicle to perform the hack, and the scope of the remote breach is believed to be the first of its kind. A NHTSA spokesperson said the agency's cyber-security staff members are "putting their expertise to work assessing this threat and the response, and we will take action if we determine it's necessary to protect safety." A Homeland Security spokesperson referred questions about the hack to Chrysler. Fiat Chrysler Automobiles has already been the subject of a federal hearing this month, in which officials scrutinized whether the company had adequately fixed recalled vehicles and repeatedly failed to notify the government about defects. But cyber-security concerns are a new and different species for the regulatory agency. Only hours before the Jeep hack was announced by Wired magazine earlier this week, NHTSA administrator Dr. Mark Rosekind said hacking vulnerabilities were a threat to privacy, safety, and the public's trust with new connected and autonomous technologies that allow vehicles to communicate. NHTSA outlined its response to the cyber-security challenges facing the industry in a report issued Tuesday. In it, the agency summarized its best practices for thwarting attacks and said it will analyze possible real-time infiltration responses. But the agency's ability to handle hackers may only go so far.

NHTSA investigating Harman Kardon for software vulnerabilities

The National Highway Traffic Safety Administration is investigating infotainment units from Harman Kardon, which produces FCA's Uconnect, to determine if Harman Kardon systems used by other companies are also vulnerable to hackings. Researchers discovered a hole in the cellular connection to the Uconnect infotainment in a Jeep Cherokee. They were able to exploit it to gain access to the vehicle's brakes, radio, and other systems. In the wake of the hack, FCA pledged to send out 1.4 million USB drives to update the software. Politicians also attacked the automaker for not reporting the problem sooner, and NHTSA opened an investigation to find whether the fix worked. INVESTIGATION Subject : Software security vulnerability Date Investigation Opened: JUL 29, 2015 Date Investigation Closed: Open NHTSA Action Number: EQ15005 Component(s): EQUIPMENT All Products Associated with this Investigation Equipment Brand Name Part No. or Model No.Production Dates HARMAN KARDON R3R4 - Details Manufacturer: HARMAN INTERNATIONAL SUMMARY: On July 23, 2015, Fiat Chrysler Automobiles (FCA) submitted a safety recall report to NHTSA concerning a software security defect condition in approximately 1.4 million model year (MY) 2013 through 2015 vehicles equipped with Uconnect 8.4A (RA3) and 8.4AN (RA4) radios manufactured by Harman Kardon (Recall 15V-461). According to FCA, software security vulnerabilities in the recalled vehicles could allow unauthorized third-party access to, and manipulation of, networked vehicle control systems. Unauthorized access or manipulation of the vehicle control systems could reduce the driver?s control of the vehicle increasing the risk of a crash with an attendant increased risk of injury to the driver, other vehicle occupants, and other vehicles and their occupants within proximity to the affected vehicle. This EQ is being opened to obtain information from the supplier of Chrysler Uconnect units to determine the nature and extent of similarities in other infotainment products provided to other vehicle manufacturers. If sufficient similarities exist, the investigation will examine if there is cause for concern that security issues exist in other Harman Kardon products. Related Video:

Brand new cars are being sold with defective Takata airbags

If you just bought a 2016 Audi TT, 2017 Audi R8, 2016–17 Mitsubishi i-MiEV, or 2016 Volkswagen CC, we have some unsettling news for you. A report provided to a US Senate committee that oversees the US National Highway Traffic Safety Administration (NHTSA) and reported on by Automotive News claims these vehicles were sold with defective Takata airbags. And it gets worse. Toyota and FCA are called out in the report for continuing to build vehicles that will need to be recalled down the line for the same issue. That's not all. The report also states that of the airbags that have been replaced already in the Takata recall campaign, 2.1 million will need to eventually be replaced again. They don't have the drying agent that prevents the degradation of the ammonium nitrate, which can lead to explosions that can destroy the airbag housing and propel metal fragments at occupants. So these airbags are out there already. We're not done yet. There's also a stockpile of about 580,000 airbags waiting to be installed in cars coming in to have their defective airbags replaced. These 580k airbags also don't have the drying agent. They'll need to be replaced down the road, too. A new vehicle with a defective Takata airbag should be safe to drive, but that margin of safety decreases with time. If all this has you spinning around in a frustrated, agitated mess, there's a silver lining that is better than it sounds. So take a breath, run your fingers through your hair, and read on. Our best evidence right now demonstrates that defective Takata airbags – those without the drying agent that prevents humidity from degrading the ammonium nitrate propellant – aren't dangerous yet. It takes a long period of time combined with high humidity for them to reach the point where they can rupture their housing and cause serious injury. It's a matter of years, not days. So a new vehicle with a defective Takata airbag should be safe to drive, but that margin of safety decreases with time – and six years seems to be about as early as the degradation happens in the worst possible scenario. All this is small comfort for the millions of people who just realized their brand-new car has a time bomb installed in the wheel or dashboard, or the owners who waited patiently to have their airbags replaced only to discover that the new airbag is probably defective in the same way (although newer and safer!) as the old one.