2011 Jeep Liberty Ltd 4x4 Leather Pano Sunroof Nav 32k Texas Direct Auto on 2040-cars

Auto blog

Jeep in St. Louis hacked from Pittsburgh

One of America's most popular vehicles contains a security flaw that allows hackers to remotely commandeer it from anywhere on the planet. Cyber-security researchers Chris Valasek and Charlie Miller say they've accessed critical vehicle controls on a 2014 Jeep Cherokee that allowed them to remotely control critical vehicle functions like braking, transmission function, and steering. Automakers have downplayed the possibility a car could be remotely compromised, but the significance of the findings detailed Tuesday could cause them to reevaluate the threats posed to hundreds of thousands of vehicles already on the road. A key finding – the pair needed no physical access to the Jeep to pull off the attack. Valasek and Miller accessed the controls via a security hole in the Sprint cellular connection to Chrysler's UConnect infotainment system. In the course of their research, Valasek sat in his Pittsburgh home and remotely manipulated Miller's Jeep as he drove along a highway outside St. Louis. If you know a car's IP address, they say, a hacker could control it from anywhere. "We didn't add anything, didn't touch it," Valasek told Autoblog. "A customer could drive one of these things off a lot, and they'd have no clue it had these open attack surfaces." Remotely, he disabled brakes, turned the radio volume up, engaged windshield wipers and tampered with the transmission. Further, they could conduct surveillance on the Jeep, measuring its speed and tracking its whereabouts. They conducted the experiments over multiple breaches. They made their findings public on the same day the National Highway Traffic Safety Administration, the federal agency in charge of vehicle safety, released its latest report on the readiness of government and automakers to fend off these sorts of cyber attacks. Later today, two US Senators are expected to introduce legislation that would help consumers better understand the potential risks of car hacking. In the early stages of their research, Valasek and Miller found a security flaw in the car's wi-fi that allowed them to remotely manipulate controls from a range of about three feet. But in recent months, they found another vulnerability in the Sprint cellular connection in the UConnect system. That was a key breakthrough. "Lo and behold, we found we could communicate with this thing using cellular, and then more research, and 'Holy cow,' we're using the Sprint network to communicate with these vehicles," Valasek said.

Consumer Reports no longer recommends Honda Civic

Consumer Reports annual Car Reliability Survey is out, and yes, there are some big surprises. First and foremost? The venerable publication no longer recommends the Honda Civic. In fact, aside from the walking-dead CR-Z and limited-release Clarity fuel-cell car, the Civic is the only Honda to miss out on CR's prestigious nod. At the opposite end there's a surprise as well – Toyota and Lexus remain the most reliable brands on the market, but Buick cracked the top three. That's up from seventh last year, and the first time for an American brand to stand on the Consumer Reports podium. Mazda's entire lineup earned Recommended checks as well. Consumer Reports dinged the Civic for its "infuriating" touch-screen radio, lack of driver lumbar adjustability, the limited selection of cars on dealer lots fitted with Honda's popular Sensing system, and the company's decision to offer LaneWatch instead of a full-tilt blind-spot monitoring system. Its score? A lowly 58. The Civic isn't the only surprise drop from CR's Recommended ranks. The Audi A3, Ford F-150, Subaru WRX/STI, and Volkswagen Jetta, GTI, and Passat all lost the Consumer Reports' checkmark. On the flipside, a number of popular vehicles graduated to the Recommended ranks, including the BMW X5, Chevrolet Camaro, Corvette, and Cruze, Hyundai Santa Fe, Porsche Macan, and Tesla Model S. Perhaps the biggest surprise is the hilariously recall-prone Ford Escape getting a Recommended check – considering the popularity of Ford's small crossover, this is likely a coup for the brand, as it puts the Escape on a level playing field with the Recommended Toyota RAV4, Honda CR-V, and Nissan Rogue. While Ford is probably happy to see CR promote the Escape, the list wasn't as kind for every brand. For example, of the entire Fiat Chrysler Automobiles catalog, the ancient Chrysler 300 was the only car to score a check – there wasn't a single Dodge, Fiat, Jeep, Maserati, or Ram on the list. That hurts. FCA isn't alone at the low end, either. GMC, Jaguar Land Rover, Mini, and Mitsubishi don't have a vehicle on CR's list between them, while brands like Mercedes-Benz, Volvo, Nissan, Lincoln, Infiniti, and Cadillac only have a few models each. You can check out Consumer Reports entire reliability roundup, even without a subscription, here.

Finding surfing spots in the UK is tough work, even in a Jeep

You truly have to love surfing to practice the sport in the United Kingdom. The area isn't exactly teeming with warm beaches full of sunbathers, and absolutely no easy spots to find big waves. To be a UK surfer, you need to be a fearless adventurer, not to mention quite lucky. And driving a Jeep might help, too.
Surfers Oli Adams and Micah Lester are traveling around the British Isles in a Jeep Wrangler Overland trying to find the best surf spots out there. These guys don't fit the laid-back surfer stereotype, but that's because finding waves in the UK is hard work. They say that the waves at some of these spots only exist for about three hours every year when the current and winds are just right.
To find these surf spots, the Jeep's offroad capabilities are paramount. In some areas, as you'll see in the video, there isn't even a beach, just jagged rocks. It would be like the movie Endless Summer, that is, if it could start snowing at any moment. These guys are clearly dedicated to their sport.