2006 Chrysler Pt Cruiser Limited on 2040-cars

Auto blog

Jeep in St. Louis hacked from Pittsburgh

One of America's most popular vehicles contains a security flaw that allows hackers to remotely commandeer it from anywhere on the planet. Cyber-security researchers Chris Valasek and Charlie Miller say they've accessed critical vehicle controls on a 2014 Jeep Cherokee that allowed them to remotely control critical vehicle functions like braking, transmission function, and steering. Automakers have downplayed the possibility a car could be remotely compromised, but the significance of the findings detailed Tuesday could cause them to reevaluate the threats posed to hundreds of thousands of vehicles already on the road. A key finding – the pair needed no physical access to the Jeep to pull off the attack. Valasek and Miller accessed the controls via a security hole in the Sprint cellular connection to Chrysler's UConnect infotainment system. In the course of their research, Valasek sat in his Pittsburgh home and remotely manipulated Miller's Jeep as he drove along a highway outside St. Louis. If you know a car's IP address, they say, a hacker could control it from anywhere. "We didn't add anything, didn't touch it," Valasek told Autoblog. "A customer could drive one of these things off a lot, and they'd have no clue it had these open attack surfaces." Remotely, he disabled brakes, turned the radio volume up, engaged windshield wipers and tampered with the transmission. Further, they could conduct surveillance on the Jeep, measuring its speed and tracking its whereabouts. They conducted the experiments over multiple breaches. They made their findings public on the same day the National Highway Traffic Safety Administration, the federal agency in charge of vehicle safety, released its latest report on the readiness of government and automakers to fend off these sorts of cyber attacks. Later today, two US Senators are expected to introduce legislation that would help consumers better understand the potential risks of car hacking. In the early stages of their research, Valasek and Miller found a security flaw in the car's wi-fi that allowed them to remotely manipulate controls from a range of about three feet. But in recent months, they found another vulnerability in the Sprint cellular connection in the UConnect system. That was a key breakthrough. "Lo and behold, we found we could communicate with this thing using cellular, and then more research, and 'Holy cow,' we're using the Sprint network to communicate with these vehicles," Valasek said.

FCA explains, updates sales reporting in wake of investigation

Fiat Chrysler Automobiles (FCA) is currently under investigation by the Department of Justice (DoJ) and Securities and Exchange Commission (SEC) for possible misappropriation of monthly sales. Not only that but a dealer group filed a lawsuit against the auto company for allegedly bribing dealers to falsify sales reports. In the wake of these mounting pressures, FCA released a report explaining their old sales reporting methods, as well as introducing the method they will use now. The report explains that sales will break down into three main categories. The first category is simply sales made by dealers in the United States that were purchased by your typical consumer. The second group is fleet sales that were purchased directly from FCA. The final group is a mix of various sales including sales by Puerto Rican dealers, cars used for marketing, and vehicles delivered to FCA employees and retirees. The original method of recording these sales relied mainly on the New Vehicle Delivery Report (NVDR). This system allowed dealers to report new car sales at the time of sale. These sales were used to create and report a total at the end of each month. Dealers also had the ability to "unwind" sales. What this means is that a dealer could cancel the sale of a car that was reported as sold in the event that a customer couldn't purchase the car or wanted a different vehicle. This would also return factory incentives to Chrysler and end the warranty period. Fleet and other sales were not recorded through this system, and were rather included in a separate "reserve" of vehicles. FCA explained that it did not know why this was the case, but the company speculated the reason may have been to avoid reporting vehicles that hadn't made it to road use yet. FCA also emphasized that their retail sales reports do not reflect quarterly earnings. The company explained that those earnings are based on vehicles purchased from FCA, which includes sales like the cars dealers buy for their local inventories. The new method also shows FCA's long run of sales increases wasn't as long as first thought. FCA has adopted a new system for calculating sales in light of concerns and confusion. This system retains the categories listed above, but changes how it counts them. The dealer reported numbers will now only include sold vehicles and will deduct sales of unwound vehicles that month.

Jeep follows up Super Bowl spot with call to help the USO

Once again, Chrysler had one of the most talked about Super Bowl commercials with its two-minute Whole Again Jeep spot, which was used to highlight its Operation SAFE Return program for US military personnel returning home from active duty. As part of this campaign, Jeep announced today that it will be donating up to $300,000 to the United Services Organizations (USO), and you can help.
Simply tweet using the #joinOSR hashtag on Twitter, visit the Yahoo! homepage or go to the Jeep Operation SAFE Return website, and Jeep will donate $1 to a fund that provides returning troops things like employment assistance and incentives to buy new vehicles. Jeep is also donating to this charity to the tune of $250 for each Jeep Wrangler and Wrangler Unlimited (including the Freedom Edition model) and Jeep Patriot Freedom Edition model sold.