20k Low Miles 2011 Jeep Grand Cherokee Leather Sunroof Saddle Leather Hemi on 2040-cars

Auto blog

Jeep in St. Louis hacked from Pittsburgh

One of America's most popular vehicles contains a security flaw that allows hackers to remotely commandeer it from anywhere on the planet. Cyber-security researchers Chris Valasek and Charlie Miller say they've accessed critical vehicle controls on a 2014 Jeep Cherokee that allowed them to remotely control critical vehicle functions like braking, transmission function, and steering. Automakers have downplayed the possibility a car could be remotely compromised, but the significance of the findings detailed Tuesday could cause them to reevaluate the threats posed to hundreds of thousands of vehicles already on the road. A key finding – the pair needed no physical access to the Jeep to pull off the attack. Valasek and Miller accessed the controls via a security hole in the Sprint cellular connection to Chrysler's UConnect infotainment system. In the course of their research, Valasek sat in his Pittsburgh home and remotely manipulated Miller's Jeep as he drove along a highway outside St. Louis. If you know a car's IP address, they say, a hacker could control it from anywhere. "We didn't add anything, didn't touch it," Valasek told Autoblog. "A customer could drive one of these things off a lot, and they'd have no clue it had these open attack surfaces." Remotely, he disabled brakes, turned the radio volume up, engaged windshield wipers and tampered with the transmission. Further, they could conduct surveillance on the Jeep, measuring its speed and tracking its whereabouts. They conducted the experiments over multiple breaches. They made their findings public on the same day the National Highway Traffic Safety Administration, the federal agency in charge of vehicle safety, released its latest report on the readiness of government and automakers to fend off these sorts of cyber attacks. Later today, two US Senators are expected to introduce legislation that would help consumers better understand the potential risks of car hacking. In the early stages of their research, Valasek and Miller found a security flaw in the car's wi-fi that allowed them to remotely manipulate controls from a range of about three feet. But in recent months, they found another vulnerability in the Sprint cellular connection in the UConnect system. That was a key breakthrough. "Lo and behold, we found we could communicate with this thing using cellular, and then more research, and 'Holy cow,' we're using the Sprint network to communicate with these vehicles," Valasek said.

Auto critic calls out Corvette, Mustang and Cherokee faithful

Most automotive purists fear change, but not without reason. Change, after all, did kill big-block V8s, along with most station wagons and manual transmissions. But change has also brought with it far more performance, safety and fuel economy - not to mention ridding the world of shag carpet interiors, bias-ply tires and those horrible motorized seatbelts of the early '90s.
By this time next year, the Chevy Corvette, Jeep Cherokee and next-generation Ford Mustang will all be on sale and will all, in some way, have angered or offended purists. To those critics, Mark Phelan of the Detroit Free Press is preemptively telling them to stop complaining - at least until they've all been driven. From the Corvette's square taillights and the Cherokee's radical nose to whatever pony car purists will harp on the 2015 Mustang for, Phelan's column points out the positives of automotive evolution and the negatives of staying the course for too long. That's fair enough, but do you think Phelan is on point, or all wet? Head on over to the Detroit Free Press to read his words, then have your say in Comments.

Chrysler highlights Mopar lineup for SEMA

SEMA is all about aftermarket parts, and in Auburn Hills that all comes down to one name: Mopar. After having previewed its lineup for this year's Vegas tuner expo earlier this month, Chrysler has now revealed what may not quite be its full dossier of modified show cars, but a good portion of them.
All told Mopar is preparing 20 vehicles for display at SEMA this year. Among them you'll find the Ram Sun Chaser, a 1500 Quad Cab show truck kitted out in two-tone orange and black paint, a roof rack for surfboards, onboard shower and convertible tailgate. The white Fiat 500L is called the Adventurer and is modified for a more rugged look that could hint at the upcoming crossover version. The Jeep Cherokee Trail Carver upgrades on the Trailhawk package with everything from roof basket to rock rails. To counterbalance the off-roaders, there's also a modified Chrysler 300S with a deep black paint job, special grille, Varvatos-edition wheels and more.
All four concepts details so far have Katzkin interiors as well, and there's also an unspecified Dodge Durango with a storm-trooper look in the gallery above. But for more details on what Mopar has installed on the Ram, 500L, Cherokee and 300, you'll want to delve into the press release below.