2005 Jeep Liberty Limited 4wd Cdchanger Heatedseats Tintedwindows We Finance!! on 2040-cars

Auto blog

Hackers arrested after stealing more than 30 Jeeps in Texas

This article has been updated with details on how the thefts were carried out, and with comments from FCA. It seems the news regarding vehicle hacking continues to get worse, especially when it comes to products from Fiat Chrysler Automobiles. Last year, a Jeep Cherokee in St. Louis, Missouri, was wirelessly hacked from Pittsburgh. Nissan had to shut down its Leaf app because of vulnerabilities. Now, a pair of hackers in Houston, Texas, stole more than 30 Jeeps over a six-month period. The two were arrested by police last Friday while attempting to steal another vehicle. ABC 13 in Houston reports that police had been following Michael Arcee and Jesse Zelay for several months but were unable to catch them in the act until now. The two were using a laptop to connect to and start a vehicle. The thieves were able to access Fiat Chrysler's own DealerCONNECT software. After entering the vehicle identification number, the hackers were able to reprogram the cars' security systems to accept a generic key, according to The Houston Chronicle. Additionally, Automotive News reports that FCA subsequently updated the terms of use for its DealerCONNECT program. These thefts were not related to the UConnect remote hacks from last year. This content is hosted by a third party. To view it, please update your privacy preferences. Manage Settings. In April, this surveillance video showed the theft of a Jeep Wrangler Unlimited. It was this footage that first led the police to Arcee and Zelay. The police began to follow and record the pair. That investigation eventually led to Friday's arrest. Both are charged with unauthorized use of a motor vehicle. In addition, Arcee is charged with felon in possession of a weapon and possession with intent to deliver a controlled substance. According to ABC 13, Homeland Security is investigating more than 100 stolen FCA vehicles that they believe were hacked using this method. After their theft, the vehicles were brought across the border to Mexico. FCA is currently conducting an internal investigation into the matter. After this article was posted, the company reached out to Autoblog, stating "FCA US takes the safety and security of its customers seriously and incorporates security features in its vehicles that help to reduce the risk of unauthorized and unlawful access to vehicle systems and wireless communications. FCA US has been cooperating with Houston Police Department since they first started the investigation.

China orders Jeep to investigate Wrangler fire risk

It's been some time since we've heard anything about fires related to the Jeep Wrangler (foreign or domestic), but it sounds like the go-anywhere SUV could be in hot water once again in China. Bloomberg is reporting that the Chinese government is ordering Jeep to investigate the matter and, in the meantime, also recommending Wrangler owners to not drive their vehicles in "extreme conditions" due to a "relatively high risk" of catching on fire.
There is no indication as to how many vehicles or which model years are affected, but the previous fire problems in both the US and China - which led to investigations but no recalls - were traced back to automatic transmission fluid leaks. The article, however, does not say what the potential problem is this time around as Jeep has not released a comment on the matter. The official notice, in Chinese, can be found here.

FCA will pay you to hack its systems

FCA is willing to pay you to hack its cars, as long as you tell the company how you did it. In an effort to enhance cybersecurity and prevent future incidents like the Jeep Cherokee hack last year, FCA announced it's working with Bugcrowd to find vulnerabilities in its vehicle software. Bugcrowd labels itself as a crowdsourced application security testing company. Users, or independent security researchers as Bugcrowd calls them, can find exploits or vulnerabilities in FCA systems. They then submit the information to Bugcrowd, who in turn supplies the info to FCA. The goal is to update systems and close any possible security breaches. FCA is offering bounties from $150 to $1,500 to any Mr. Robot types, with payment based on the size and severity of the flaw. FCA wants hackers to focus specifically on the UConnect website and the company's iOS and Android apps. No bounties will be given for anything outside the scope of those three things. Bugcrowd says it will not take any legal action against anyone who submits an exploit. While we think it's good that the company is taking steps to address these problems, it's not a groundbreaking maneuver. Other companies employ similar systems. Earlier this year, both Tesla and Uber announced that they're willing to offer up to $10,000 to hackers who find vulnerabilities in their system. For years, Microsoft has been paying hackers to find exploits. It also seems that FCA took its time to announce this plan, considering the Jeep hack happened nearly a year ago. If the partnership works, we can expect other automakers to make similar deals. Related Video: This content is hosted by a third party. To view it, please update your privacy preferences. Manage Settings. News Source: FCA, Bugcrowd Jeep Safety Technology Infotainment Smartphone FCA