1997 Jeep Grand Cherokee Ltd on 2040-cars

Auto blog

How to update and secure a vulnerable Chrysler Uconnect system

If you own one of the 1.4 million vehicles affected by the recent Chrysler software recall, you may want to watch this video. In it, we explain how to get the latest infotainment software loaded onto the 8.4-inch Uconnect system. The recall was a response to the findings of researchers who were able to hack into and remotely control a 2014 Jeep Cherokee through its cellular connection. Although Fiat Chrysler has worked with Sprint to plug most of the holes on the carrier side, there are still some vulnerabilities that only this latest software version can patch. Owners have three options to get the update: download it now, wait for a USB stick in the mail, or take the vehicle to an FCA dealer. Chrysler will be sending USB sticks loaded with the software update to customers. Anyone with an internet connection and a USB stick of their own with at least 4 GB capacity can speed things up by downloading the patch from the Uconnect website. We cover that process from start to finish in the video, with the final portion still applicable to those using the FCA-supplied USB stick. If after watching this you still don't want to tackle the patch yourself, you can take your vehicle to the dealer to have it done. Also note that this process is the same for all Uconnect updates, not just the one patching the exploits. Our demonstrator vehicle is a 2015 Ram 1500 pickup. The procedure should be very similar on other products with the 8.4-inch Uconnect system, with only the location of the USB port varying. Once you have the USB stick with the software on it – either after having downloaded it yourself or receiving it in the mail from Chrysler – the installation process is relatively simple. It takes about 15 minutes to perform the update; we edited out the wait in the video. To check whether or not your car's 8.4-inch Uconnect system is running the latest software, go to System Information on the touch screen's Settings page and look at Software Version. The update related to the recall is version 15.17.5. Related Video: Recalls Chrysler Dodge Jeep RAM Safety Technology Infotainment Videos Original Video hacking

Jeep Wrangler diesel likely after 2015 model refresh

We automotive journalists aren't always the right people to ask about whether a US-spec vehicle should or should not be offered with a diesel powertrain (hint: the answer is usually "YES"). But when it comes to the iconic, off-road-ready Jeep Wrangler, we aren't the only ones who have been clamoring for an oil-burning engine behind that famous seven-slat grille. To that end, it appears there's good news on the horizon, as Jeep CEO Mike Manley recently told Ward's Auto that the "Wrangler is on the radar to get (a) diesel."
"I'm confident that the Grand Cherokee will show just how large a demand there is for diesel, and I think what that will do is reinforce the need for us to target Wrangler as a vehicle that can take a diesel," Manley told Ward's. The most rugged of Jeeps is scheduled to get an overhaul around 2015-16, and the diesel powertrain will likely be introduced around that time.
This year alone, Chrysler will be adding a diesel engine to the Grand Cherokee SUV, as well as the Ram 1500 pickup and Promaster utility van.

Jeep hackers return to take over your steering wheel

Last year, security researchers Charlie Miller and Chris Valasek made headlines by remotely hacking a Jeep, killing the transmission and applying the brakes while Wired reporter Andy Greenberg was behind the wheel and driving in traffic. The hack led to a 1.4 million-vehicle recall for Fiat Chrysler and new jobs at Uber's Advanced Technology Center for Miller and Valasek. Despite the cushy new gigs, the two of them apparently aren't done hacking Jeep Cherokees for sport. In their latest exploit, the pair can gain even more control over a vehicle, but it would also be extremely difficult to pull off in a real-world setting. Here's the harrowing part first: Miller and Valasek can do more than just apply the brakes at low speed or cut the transmission this time around. Now they can turn on the parking brake, mess with the cruise control and hijack the auto-parking system to jerk the steering wheel a dangerous 180 degrees while the car is in motion. It looks about as frightening as it sounds: This content is hosted by a third party. To view it, please update your privacy preferences. Manage Settings. Although it's not hard to see how that would make for a very terrifying drive, there's a big grain of salt that comes along with it: Miller and Valasek actually used the same model 2014 Jeep Cherokee as the original demonstration, but without the software patch applied. Or, as Wired put it, "imagine an alternate reality," where a fix had never been made. Unlike before, the latest hack requires a physical connection plugging their laptop into the Jeep's OBD-II diagnostic port under the dash. The team also had to update the Jeep with their own firmware to disable some of the car's built-in safety checks before they could get much control. In other words: In order to get hacked, Jeep owners would first need to roll back their car's firmware to an older version, invite someone to remove security features and then also let them ride shotgun with a computer. Or, as Engadget's resident security expert Violet Blue wrote on Twitter, it's sort of a non-threat. This content is hosted by a third party. To view it, please update your privacy preferences. Manage Settings. That said, The Verge points out that it may still be possible to exploit OBD-connected wireless dongles like the Metromile Tag, Automatic Link or other similar devices currently marketed by insurance companies.