2005 Chrysler Crossfire Srt-6 Blk/blk Nationwide Warranty on 2040-cars

Auto blog

Jeep in St. Louis hacked from Pittsburgh

One of America's most popular vehicles contains a security flaw that allows hackers to remotely commandeer it from anywhere on the planet. Cyber-security researchers Chris Valasek and Charlie Miller say they've accessed critical vehicle controls on a 2014 Jeep Cherokee that allowed them to remotely control critical vehicle functions like braking, transmission function, and steering. Automakers have downplayed the possibility a car could be remotely compromised, but the significance of the findings detailed Tuesday could cause them to reevaluate the threats posed to hundreds of thousands of vehicles already on the road. A key finding – the pair needed no physical access to the Jeep to pull off the attack. Valasek and Miller accessed the controls via a security hole in the Sprint cellular connection to Chrysler's UConnect infotainment system. In the course of their research, Valasek sat in his Pittsburgh home and remotely manipulated Miller's Jeep as he drove along a highway outside St. Louis. If you know a car's IP address, they say, a hacker could control it from anywhere. "We didn't add anything, didn't touch it," Valasek told Autoblog. "A customer could drive one of these things off a lot, and they'd have no clue it had these open attack surfaces." Remotely, he disabled brakes, turned the radio volume up, engaged windshield wipers and tampered with the transmission. Further, they could conduct surveillance on the Jeep, measuring its speed and tracking its whereabouts. They conducted the experiments over multiple breaches. They made their findings public on the same day the National Highway Traffic Safety Administration, the federal agency in charge of vehicle safety, released its latest report on the readiness of government and automakers to fend off these sorts of cyber attacks. Later today, two US Senators are expected to introduce legislation that would help consumers better understand the potential risks of car hacking. In the early stages of their research, Valasek and Miller found a security flaw in the car's wi-fi that allowed them to remotely manipulate controls from a range of about three feet. But in recent months, they found another vulnerability in the Sprint cellular connection in the UConnect system. That was a key breakthrough. "Lo and behold, we found we could communicate with this thing using cellular, and then more research, and 'Holy cow,' we're using the Sprint network to communicate with these vehicles," Valasek said.

UAW reveals more details for tentative FCA deal

Around 40,000 union workers employed by Fiat Chrysler Automobiles have a new proposed contract to vote for or against just about a week after soundly rejecting a previous proposal. Like the contract that was rejected, this new proposal was negotiated between union leadership and management at FCA. If workers vote this time to accept the contract, negotiations are likely to begin in earnest with the other two big American automakers, Ford and General Motors. The biggest sticking points that kept the previous contract proposal from being ratified revolved around so-called second-tier UAW workers. Under the rejected contract, there wasn't a clear path in place that would bring these newer hires into wage parity with first-tier workers. The newly proposed contract, however, would have second-tier employees earning around $29 per hour – the same as first-tier workers – after eight years of employment. A slightly revised profit-sharing plan is also included, as is a larger signing bonus for first-tier workers. Gone from the new contract proposal is a health-care cooperative that would combine workers from all three Detroit-based automakers into one pool. While this action had the potential to lower health-care costs for UAW members, it wasn't universally understood by rank-and-file workers, said UAW President Dennis Williams. "I was a little naive," he said. "I really thought everyone understood it. It is my fault. I should have educated people more on it. And so we did take it out of the agreement." If ratified, this new contract will go into effect immediately and will cover a four-year period. Over that course of time, the UAW expects FCA to increase its employment figures by a little more than 100 workers, according to reports. Additional details on the contract can be seen on the UAW's website here. News Source: The Detroit News, The Detroit Free Press, United Auto Workers (PDF)Image Credit: Jeff Kowalsky/Bloomberg via Getty Earnings/Financials Hirings/Firings/Layoffs UAW/Unions Chrysler Fiat FCA

Minivan market not what it used to be, but margins make up for it

Residual values for last year's minivans are higher than they were in 2000.
Much like the station wagon was the shuttle of Baby Boomer generation, the minivan has been the primary means of transport for Generations X and Y. Just as the boomers abandoned the Country Squire, though, those kids that were toted around in Grand Caravans and Windstars are adults, and they certainly don't want to be seen in the cars their parents drove.