2007 Grand Cherokee 4x4 Low Miles on 2040-cars

Auto blog

Jeep in St. Louis hacked from Pittsburgh

One of America's most popular vehicles contains a security flaw that allows hackers to remotely commandeer it from anywhere on the planet. Cyber-security researchers Chris Valasek and Charlie Miller say they've accessed critical vehicle controls on a 2014 Jeep Cherokee that allowed them to remotely control critical vehicle functions like braking, transmission function, and steering. Automakers have downplayed the possibility a car could be remotely compromised, but the significance of the findings detailed Tuesday could cause them to reevaluate the threats posed to hundreds of thousands of vehicles already on the road. A key finding – the pair needed no physical access to the Jeep to pull off the attack. Valasek and Miller accessed the controls via a security hole in the Sprint cellular connection to Chrysler's UConnect infotainment system. In the course of their research, Valasek sat in his Pittsburgh home and remotely manipulated Miller's Jeep as he drove along a highway outside St. Louis. If you know a car's IP address, they say, a hacker could control it from anywhere. "We didn't add anything, didn't touch it," Valasek told Autoblog. "A customer could drive one of these things off a lot, and they'd have no clue it had these open attack surfaces." Remotely, he disabled brakes, turned the radio volume up, engaged windshield wipers and tampered with the transmission. Further, they could conduct surveillance on the Jeep, measuring its speed and tracking its whereabouts. They conducted the experiments over multiple breaches. They made their findings public on the same day the National Highway Traffic Safety Administration, the federal agency in charge of vehicle safety, released its latest report on the readiness of government and automakers to fend off these sorts of cyber attacks. Later today, two US Senators are expected to introduce legislation that would help consumers better understand the potential risks of car hacking. In the early stages of their research, Valasek and Miller found a security flaw in the car's wi-fi that allowed them to remotely manipulate controls from a range of about three feet. But in recent months, they found another vulnerability in the Sprint cellular connection in the UConnect system. That was a key breakthrough. "Lo and behold, we found we could communicate with this thing using cellular, and then more research, and 'Holy cow,' we're using the Sprint network to communicate with these vehicles," Valasek said.

Jeep Liberty under investigation for door fires

The Jeep Liberty has already had plenty of attention for possible fires thanks to the first-gen model's fuel tank, but now the midsize Jeep is under the microscope of the National Highway Traffic Safety Administration for another fire-related concern. NHTSA has opened an investigation for the 2012 Liberty after receiving two reports of electrical fires in the driver's door.
According to the investigation summary, around 80,000 vehicles could potentially be affected by this problem. In both reported fires, the drivers noticed smoke and then flames from the master power window switch, and they had to pull to a stop and exit through the passenger side of the SUV. According to Autoguide, there was one injury to a motorist who suffered burned fingers while trying to open the driver's door.
Interestingly, the Dodge Nitro is not yet involved in this investigation, even though it was still around for the 2012 model year; the Nitro ended production in 2011 about a year before the final Liberty rolled off the line for the 2013 model year. Scroll down for the official NHTSA investigation summary.

Auto Mergers and Acquisitions: Suicide or salvation?

We love the Moses figure. A savior riding in from stage right with the ideas, the smarts, and the scrappiness to put things right. Alan Mullaly. Carroll Shelby. Lee Iacocca. Andrew Carnegie. Steve Jobs. Elon Musk. Bart Simpson. Sergio Marchionne does not likely view himself with Moses-like optics, but the CEO of Fiat Chrysler Automobiles recently gave a remarkable, perhaps prophetic interview with Automotive News about his interest and the inevitability of merging with a potential automotive partner like General Motors. Marchionne has been overtly public about his notion that GM must merge with FCA. For a bit of context, GM sold 9.9 million vehicles in 2014, posting $2.8 billion in net income, while FCA sold 4.75 million units and earned $2.4 billion in net income, painting a very rosy FCA earnings-to-sales picture. But that's not the entire picture. Most people in the auto industry still remember the trainwreck that was the DaimlerChrysler "merger" written in what turned out to be sand in 1998. It proved to be a master class in how not to fuse two companies, two cultures, two continents, and two management teams. Oh, it worked for the two individuals at both helms pre-merger. They got silly rich. And the industry itself was in a misty romance at the time with mergers and acquisitions. BMW bought Rolls-Royce. Volkswagen Group bought Bentley, Bugatti, and Lamborghini, putting all three brands into their rightful place in both products and positioning. No marriages there, so no false pretense. Finally, Nissan and Renault got married in 1999. A successful marriage requires several rare elements in this atmosphere of gas fumes and power lust. But a successful marriage requires several rare elements in this atmosphere of gas fumes and power lust, the principle part being honesty. Daimler and Chrysler lied to each other. The heads of each unit, the product planners, and finance all presented their then-current and long-range forecasts to each other with less-than-forthright accuracy. Daimler was the far greater equal and no one from the Chrysler side enjoyed that. The cultures were entirely different, too, and little was done to bridge that gap. Which brings me back to the present overtures by Marchionne to GM. "There are varying degrees of hugs," Marchionne stated in the Automotive News piece. "I can hug you nicely, I can hug you tightly, I can hug you like a bear, I can really hug you." Seriously?