2014 Jeep Cherokee Limited on 2040-cars

Auto blog

Hackers stole Jeeps in Texas using FCA's internal dealer software

This article has been updated with details on how the thefts were carried out, and with comments from FCA. It seems the news regarding vehicle hacking continues to get worse, especially when it comes to products from Fiat Chrysler Automobiles. Last year, a Jeep Cherokee in St. Louis, Missouri, was wirelessly hacked from Pittsburgh. Nissan had to shut down its Leaf app because of vulnerabilities. Now, a pair of hackers in Houston, Texas, stole more than 30 Jeeps over a six-month period. The two were arrested by police last Friday while attempting to steal another vehicle. ABC 13 in Houston reports that police had been following Michael Arcee and Jesse Zelay for several months but were unable to catch them in the act until now. The two were using a laptop to connect to and start a vehicle. The thieves were able to access Fiat Chrysler's own DealerCONNECT software. After entering the vehicle identification number, the hackers were able to reprogram the cars' security systems to accept a generic key, according to The Houston Chronicle. Additionally, Automotive News reports that FCA subsequently updated the terms of use for its DealerCONNECT program. These thefts were not related to the UConnect remote hacks from last year. This content is hosted by a third party. To view it, please update your privacy preferences. Manage Settings. In April, this surveillance video showed the theft of a Jeep Wrangler Unlimited. It was this footage that first led the police to Arcee and Zelay. The police began to follow and record the pair. That investigation eventually led to Friday's arrest. Both are charged with unauthorized use of a motor vehicle. In addition, Arcee is charged with felon in possession of a weapon and possession with intent to deliver a controlled substance. According to ABC 13, Homeland Security is investigating more than 100 stolen FCA vehicles that they believe were hacked using this method. After their theft, the vehicles were brought across the border to Mexico. FCA is currently conducting an internal investigation into the matter. After this article was posted, the company reached out to Autoblog, stating "FCA US takes the safety and security of its customers seriously and incorporates security features in its vehicles that help to reduce the risk of unauthorized and unlawful access to vehicle systems and wireless communications. FCA US has been cooperating with Houston Police Department since they first started the investigation.

FCA and ZF issue recall on nine-speed automatic transmission

After years of complaints, German transmission manufacturer ZF is finally issuing a recall of its much maligned 9HP nine-speed automatic transmission. Although it has been criticized for a number of issues, ZF is issuing the recall to address the possibility of the transmission unexpectedly shifting into neutral. The issue covers 505,000 vehicles in the United States alone. This issue is related to an improper crimp on the transmission wiring harness. Rather than a physical fix, ZF is issuing a software update to remedy the problem. The company doesn't recommend dealers attempt to fix the crimp. Although the transmission can be found in a number of models by various manufacturers, currently only those from FCA are being recalled. This is the second recall in less than a year related to a ZF transmission shifting into neutral. FCA recently recalled more than a million vehicles worldwide because of a poorly designed shifter for ZF's 8HP eight-speed automatic. That issue may have resulted in the death of actor Anton Yelchin in June. Although there are no deaths related to this new recall, NHTSA reports that the issue has resulted in at least 10 injuries. Issues with the transmission have been known for years. A number of software updates have attempted to address various problems, making us wonder if there could be a fundamental hardware issue as the complaints span across a number of automakers. Vehicles equipped with the 9HP include 2014 and newer versions of the V6 Acura TLX, Chrysler 200, Fiat 500X, upper-level Honda Pilots, Jeep Cherokee and Renegade, Land Rover Discovery Sport and Range Rover Evoque, and Ram ProMaster City. Only FCA is issuing a recall and only on 2014 and 2015 models. Related Video: News Source: NHTSA Recalls Chrysler Fiat Jeep Safety FCA nine-speed transmission

Weekly Recap: Hackers demonstrate auto industry's vulnerability

There's always been a certain risk associated with driving, and this week cyber security came into focus as the latest danger zone when researchers demonstrated how easily they could hack into a 2014 Jeep Cherokee from across the country. The incident raised concerns over the vulnerability of today's cars, many of which double as smartphones and hot spots. During the now-infamous experiment, Chris Valasek and Charlie Miller infiltrated the Jeep's cellular connection and were able to control the infotainment system, brakes, and other functions. The hackers told the Jeep's maker, FCA US, of their findings last year, the company devised a software fix. Though Valesek and Miller hacked a Cherokee (like the one shown above), several FCA products, including recent versions of the Ram, Grand Cherokee, Dodge Durango, and Viper were also affected, illustrating potentially wide exposure that could reverberate across the sector. "For the auto industry, this is a very important event and shows that cyber-security protection is needed even sooner than previously planned," Egil Juliussen, senior analyst and research director for IHS Automotive, wrote in a research note. "Five years ago, the auto industry did not consider cyber security as a near-term problem. This view has changed." Hours after the Cherokee hacking incident was publicized on Tuesday, Sens. Ed Markey (D-Mass) and Richard Blumenthal (D-Conn) introduced legislation to direct the National Highway Traffic Safety Administration and Federal Trade Commission to establish national standards for automotive cyber security. The bill also would require vehicles to have a cyber-rating system to alert consumers how well their cars' privacy and security are defended. "Drivers shouldn't have to choose between being connected and being protected," Markey said in a statement. "We need clear rules of the road that protect cars from hackers and American families from data trackers." Though FCA and its Jeep Cherokee were in the spotlight this time, they were just the latest to showcase how automotive technology has advanced faster than safety and regulatory measures. IHS forecasts 82.5 million cars will be connected to the internet by 2022, which is more than three times today's level. "Cyber-security will become a major challenge for the auto industry and solutions are long overdue," Juliussen said.