1980 Jeep Cj5 Base Sport Utility 2-door 2.5l on 2040-cars

Auto blog

Jeep in St. Louis hacked from Pittsburgh

One of America's most popular vehicles contains a security flaw that allows hackers to remotely commandeer it from anywhere on the planet. Cyber-security researchers Chris Valasek and Charlie Miller say they've accessed critical vehicle controls on a 2014 Jeep Cherokee that allowed them to remotely control critical vehicle functions like braking, transmission function, and steering. Automakers have downplayed the possibility a car could be remotely compromised, but the significance of the findings detailed Tuesday could cause them to reevaluate the threats posed to hundreds of thousands of vehicles already on the road. A key finding – the pair needed no physical access to the Jeep to pull off the attack. Valasek and Miller accessed the controls via a security hole in the Sprint cellular connection to Chrysler's UConnect infotainment system. In the course of their research, Valasek sat in his Pittsburgh home and remotely manipulated Miller's Jeep as he drove along a highway outside St. Louis. If you know a car's IP address, they say, a hacker could control it from anywhere. "We didn't add anything, didn't touch it," Valasek told Autoblog. "A customer could drive one of these things off a lot, and they'd have no clue it had these open attack surfaces." Remotely, he disabled brakes, turned the radio volume up, engaged windshield wipers and tampered with the transmission. Further, they could conduct surveillance on the Jeep, measuring its speed and tracking its whereabouts. They conducted the experiments over multiple breaches. They made their findings public on the same day the National Highway Traffic Safety Administration, the federal agency in charge of vehicle safety, released its latest report on the readiness of government and automakers to fend off these sorts of cyber attacks. Later today, two US Senators are expected to introduce legislation that would help consumers better understand the potential risks of car hacking. In the early stages of their research, Valasek and Miller found a security flaw in the car's wi-fi that allowed them to remotely manipulate controls from a range of about three feet. But in recent months, they found another vulnerability in the Sprint cellular connection in the UConnect system. That was a key breakthrough. "Lo and behold, we found we could communicate with this thing using cellular, and then more research, and 'Holy cow,' we're using the Sprint network to communicate with these vehicles," Valasek said.

BMW M850i Coupe, Jeep Wrangler Rubicon and a 1996 Toyota Land Cruiser | Autoblog Podcast #585

In this week's Autoblog Podcast, Editor-in-Chief Greg Migliore is joined by Senior Editor Alex Kierstein and Senior Editor, Green, John Snyder. This week, they talk about driving the BMW 8 Series Coupe, Jeep Wrangler Rubicon and Toyota Corolla Hatchback. Then they talk about the news, including electric Hummer rumors and Tesla pickup timing. Finally, they consider whether or not Greg should buy his neighbor's 1996 Toyota Land Cruiser. Autoblog Podcast #585 Get The Podcast iTunes – Subscribe to the Autoblog Podcast in iTunes RSS – Add the Autoblog Podcast feed to your RSS aggregator MP3 – Download the MP3 directly Rundown Cars we're driving: BMW M850i xDrive Coupe Jeep Wrangler Rubicon Toyota Corolla Hatchback In the news: Is an all-electric Hummer in the works? Tesla pickup truck is on its way Spend My Money: 1996 Toyota Land Cruiser Feedback Email – Podcast@Autoblog.com Review the show on iTunes Related Video:

Chrysler Recalls Jeep SUVs For Ignition Switches

The ignition switch defects that engulfed General Motors are now a rapidly growing problem at Chrysler. Chrysler said Tuesday it is recalling up to 792,300 older Jeep SUVs worldwide because the ignition switches could fall out of the "run" position, shutting off the engine and disabling air bags as well as power-assisted steering and braking. That's the same problem that has forced GM to recall more than 15 million cars over the last six months. Chrysler's recall covers 2005-2007 Grand Cherokees and 2006-2007 Commanders. The company said it is not sure exactly how many will be recalled, but said it will notify customers by mid-September. Chrysler said an outside force such as a driver's knee can knock switches out of the "run" position. Engineers are working on a fix. The Auburn Hills, Michigan-based automaker, now part of Fiat Chrysler Automobiles NV, said it knows of no related injuries and only one accident. But it said owners should keep clearance between their knees and keys until repairs are made. Chrysler has now recalled more than 1.7 million vehicles for ignition-switch problems. In June, the company added 696,000 minivans and SUVs to a 2011 recall to fix faulty ignition switches. Those recalls covered Dodge Journey SUVs and Chrysler Town & Country, Dodge Caravan and Volkswagen Routan minivans - which Chrysler made for the German automaker - from the 2007 to 2010 model years. Tuesday's recall is the outgrowth of two investigations opened by U.S. safety regulators last month as part of a broader probe into ignition-switch and air-bag problems across the auto industry. The agency wouldn't say Tuesday whether its investigation could lead to recalls at other automakers. The National Highway Traffic Safety Administration said in June that it was investigating Jeep Commanders and Grand Cherokees after getting 32 complaints that a driver's knee can hit the key fob or key chain, causing the ignition switch to move out of position. The federal investigation is still open. The agency said Tuesday that it is requesting additional information from Chrysler to ensure that its repairs will be effective. The investigations and recalls come after GM bungled an ignition-switch recall of older small cars. GM acknowledged that it knew of the ignition problem for more than a decade but failed to recall the cars until earlier this year, when it recalled 2.6 million small cars such as the Chevrolet Cobalt.