Starwood Motors! Rescue Green Kevlar! Ultra Wheels! Procomp Lift! Smittybilt! Kc on 2040-cars

Auto blog

Weekly Recap: Hackers demonstrate auto industry's vulnerability

There's always been a certain risk associated with driving, and this week cyber security came into focus as the latest danger zone when researchers demonstrated how easily they could hack into a 2014 Jeep Cherokee from across the country. The incident raised concerns over the vulnerability of today's cars, many of which double as smartphones and hot spots. During the now-infamous experiment, Chris Valasek and Charlie Miller infiltrated the Jeep's cellular connection and were able to control the infotainment system, brakes, and other functions. The hackers told the Jeep's maker, FCA US, of their findings last year, the company devised a software fix. Though Valesek and Miller hacked a Cherokee (like the one shown above), several FCA products, including recent versions of the Ram, Grand Cherokee, Dodge Durango, and Viper were also affected, illustrating potentially wide exposure that could reverberate across the sector. "For the auto industry, this is a very important event and shows that cyber-security protection is needed even sooner than previously planned," Egil Juliussen, senior analyst and research director for IHS Automotive, wrote in a research note. "Five years ago, the auto industry did not consider cyber security as a near-term problem. This view has changed." Hours after the Cherokee hacking incident was publicized on Tuesday, Sens. Ed Markey (D-Mass) and Richard Blumenthal (D-Conn) introduced legislation to direct the National Highway Traffic Safety Administration and Federal Trade Commission to establish national standards for automotive cyber security. The bill also would require vehicles to have a cyber-rating system to alert consumers how well their cars' privacy and security are defended. "Drivers shouldn't have to choose between being connected and being protected," Markey said in a statement. "We need clear rules of the road that protect cars from hackers and American families from data trackers." Though FCA and its Jeep Cherokee were in the spotlight this time, they were just the latest to showcase how automotive technology has advanced faster than safety and regulatory measures. IHS forecasts 82.5 million cars will be connected to the internet by 2022, which is more than three times today's level. "Cyber-security will become a major challenge for the auto industry and solutions are long overdue," Juliussen said.

How to update and secure a vulnerable Chrysler Uconnect system

If you own one of the 1.4 million vehicles affected by the recent Chrysler software recall, you may want to watch this video. In it, we explain how to get the latest infotainment software loaded onto the 8.4-inch Uconnect system. The recall was a response to the findings of researchers who were able to hack into and remotely control a 2014 Jeep Cherokee through its cellular connection. Although Fiat Chrysler has worked with Sprint to plug most of the holes on the carrier side, there are still some vulnerabilities that only this latest software version can patch. Owners have three options to get the update: download it now, wait for a USB stick in the mail, or take the vehicle to an FCA dealer. Chrysler will be sending USB sticks loaded with the software update to customers. Anyone with an internet connection and a USB stick of their own with at least 4 GB capacity can speed things up by downloading the patch from the Uconnect website. We cover that process from start to finish in the video, with the final portion still applicable to those using the FCA-supplied USB stick. If after watching this you still don't want to tackle the patch yourself, you can take your vehicle to the dealer to have it done. Also note that this process is the same for all Uconnect updates, not just the one patching the exploits. Our demonstrator vehicle is a 2015 Ram 1500 pickup. The procedure should be very similar on other products with the 8.4-inch Uconnect system, with only the location of the USB port varying. Once you have the USB stick with the software on it – either after having downloaded it yourself or receiving it in the mail from Chrysler – the installation process is relatively simple. It takes about 15 minutes to perform the update; we edited out the wait in the video. To check whether or not your car's 8.4-inch Uconnect system is running the latest software, go to System Information on the touch screen's Settings page and look at Software Version. The update related to the recall is version 15.17.5. Related Video: Recalls Chrysler Dodge Jeep RAM Safety Technology Infotainment Videos Original Video hacking

Chrysler taking big risk snubbing NHTSA

Maker Insists Feds Overstate Risk Of Fires With Grand Cherokee, Liberty Models
It's not often that recall stories make it above the fold, in that old newspaper parlance, but when one shows up as the lead story on the network evening news programs, you know it's something big.
And so it is with Chrysler snubbing its nose at a request by the National Highway Traffic Safety Administration to recall 2.7 million Jeeps the feds insist are at risk of potentially catastrophic fuel tank fires in a rear-end collision.