06 Wrangler Rubicon Unlimited Winch Nav Cb Skid Plates Lift Kit Hard Top Exhaust on 2040-cars

Auto blog

Jeep in St. Louis hacked from Pittsburgh

One of America's most popular vehicles contains a security flaw that allows hackers to remotely commandeer it from anywhere on the planet. Cyber-security researchers Chris Valasek and Charlie Miller say they've accessed critical vehicle controls on a 2014 Jeep Cherokee that allowed them to remotely control critical vehicle functions like braking, transmission function, and steering. Automakers have downplayed the possibility a car could be remotely compromised, but the significance of the findings detailed Tuesday could cause them to reevaluate the threats posed to hundreds of thousands of vehicles already on the road. A key finding – the pair needed no physical access to the Jeep to pull off the attack. Valasek and Miller accessed the controls via a security hole in the Sprint cellular connection to Chrysler's UConnect infotainment system. In the course of their research, Valasek sat in his Pittsburgh home and remotely manipulated Miller's Jeep as he drove along a highway outside St. Louis. If you know a car's IP address, they say, a hacker could control it from anywhere. "We didn't add anything, didn't touch it," Valasek told Autoblog. "A customer could drive one of these things off a lot, and they'd have no clue it had these open attack surfaces." Remotely, he disabled brakes, turned the radio volume up, engaged windshield wipers and tampered with the transmission. Further, they could conduct surveillance on the Jeep, measuring its speed and tracking its whereabouts. They conducted the experiments over multiple breaches. They made their findings public on the same day the National Highway Traffic Safety Administration, the federal agency in charge of vehicle safety, released its latest report on the readiness of government and automakers to fend off these sorts of cyber attacks. Later today, two US Senators are expected to introduce legislation that would help consumers better understand the potential risks of car hacking. In the early stages of their research, Valasek and Miller found a security flaw in the car's wi-fi that allowed them to remotely manipulate controls from a range of about three feet. But in recent months, they found another vulnerability in the Sprint cellular connection in the UConnect system. That was a key breakthrough. "Lo and behold, we found we could communicate with this thing using cellular, and then more research, and 'Holy cow,' we're using the Sprint network to communicate with these vehicles," Valasek said.

2014 Jeep Cherokee configurator up and running

Production delays aside, Jeep is steaming towards its September on-sale date for the 2014 Cherokee. The reborn midsizer's configurator has just gone live, meaning you can fiddle with different options, colors and trim levels to your heart's content.
The cheapest model available is the 4X2 Sport, which starts at a reasonable $22,995. On the high end, the Cherokee's builder allowed us to indulge our passion for ludicrously priced vehicles by outfitting the top-end Trailhawk, which already starts at $29,495, with $8,610 in options. The resulting car, which you can see above, would retail for $39,100 after the $995 destination is factored in.
Head on over to Jeep's build-it-yourself website and have a look around.

Jeep Grand Cherokee, Dodge Durango still catching fire after recall

Automakers issue recalls all the time. It's part of the cost of doing business. We just assume that once the recall has been carried out, the problem in question has been fixed. But that's not always the case, as this latest investigation being undertaken by the National Highway Traffic Safety Administration goes to show. The problem stems back to a recall issued by Chrysler last summer. It revolved rather the sun visor in the SUVs it makes at its Jefferson North Assembly Plant – specifically, the screw affixing the sun visor could end up rubbing against the wiring for the lamp in the vanity mirror, potentially causing an electrical short and even a fire. 62 such short circuits, 38 fires and three injuries reported, prompting Chrysler to recall nearly 900,000 units of the 2011-2014 Jeep Grand Cherokee and Dodge Durango (over 650,000 of them in the United States). The plastic spacers they installed to rectify the problem, however, may not have done the trick. Eight reports (but none involving injuries) have been filed with the NHTSA regarding the same issue recurring, spurring the government agency to open a new investigation into the matter. If deemed necessary, the NHTSA could ask FCA to issue another recall to fix the issue again, which we may necessitate the installation of a fuze to prevent any such the electric short. Related Video: INVESTIGATION Subject : Headliner Fires Date Investigation Opened: MAY 01, 2015 Date Investigation Closed: Open NHTSA Action Number: RQ15003 Component(s): ELECTRICAL SYSTEM , INTERIOR LIGHTING Manufacturer: Chrysler (FCA US LLC) SUMMARY: On July 1st, 2014 Chrysler (FCA US LLC) issued safety recall 14V-391 to remedy a wiring-related fire hazard on the headliner of approximately 661,888 model year (MY) 2011-2014 Jeep Grand Cherokee and Dodge Durango vehicles manufactured between January 5, 2010 and December 11, 2013. The recall was in response to the Office of Defects Investigation (ODI) investigation EA14-001 during which data provided by Chrysler indicates that the fire is caused by an electrical short in the vanity lamp wiring for either one of the sun visors mounted on the vehicle. The sun visors are mounted to the roof of the vehicle through the headliner with three metal screws.