Liberty Limited, 125 Pt Insp & Svc'd, Warranty, 4wd 4x4, Leather, Htd Sts,clean! on 2040-cars

Auto blog

FCA will pay you to hack its systems

FCA is willing to pay you to hack its cars, as long as you tell the company how you did it. In an effort to enhance cybersecurity and prevent future incidents like the Jeep Cherokee hack last year, FCA announced it's working with Bugcrowd to find vulnerabilities in its vehicle software. Bugcrowd labels itself as a crowdsourced application security testing company. Users, or independent security researchers as Bugcrowd calls them, can find exploits or vulnerabilities in FCA systems. They then submit the information to Bugcrowd, who in turn supplies the info to FCA. The goal is to update systems and close any possible security breaches. FCA is offering bounties from $150 to $1,500 to any Mr. Robot types, with payment based on the size and severity of the flaw. FCA wants hackers to focus specifically on the UConnect website and the company's iOS and Android apps. No bounties will be given for anything outside the scope of those three things. Bugcrowd says it will not take any legal action against anyone who submits an exploit. While we think it's good that the company is taking steps to address these problems, it's not a groundbreaking maneuver. Other companies employ similar systems. Earlier this year, both Tesla and Uber announced that they're willing to offer up to $10,000 to hackers who find vulnerabilities in their system. For years, Microsoft has been paying hackers to find exploits. It also seems that FCA took its time to announce this plan, considering the Jeep hack happened nearly a year ago. If the partnership works, we can expect other automakers to make similar deals. Related Video: This content is hosted by a third party. To view it, please update your privacy preferences. Manage Settings. News Source: FCA, Bugcrowd Jeep Safety Technology Infotainment Smartphone FCA

Fiat Chrysler to pay $800M in Jeep, Ram emissions cheating case

WASHINGTON — Fiat Chrysler Automobiles NV has agreed to a settlement worth about $800 million to resolve claims from the U.S. Justice Department and state of California that it used illegal software that produced false results on diesel-emissions tests, but still faces an ongoing criminal probe. The hefty penalty is the latest fallout from the U.S. government's stepped-up enforcement of vehicle emissions rules after Volkswagen AG admitted in September 2015 to intentionally evading emissions rules. The Fiat Chrysler settlement includes $311 million in total civil penalties to U.S. and California regulators, up to $280 million to resolve claims from diesel owners, and extended warranties worth $105 million. It covers 104,000 Fiat Chrysler 2014-16 Ram 1500 and Jeep Grand Cherokee diesels, the Justice Department said. Regulators said Fiat Chrysler used "defeat devices" to cheat emissions tests in real-world driving. Fiat Chrysler said in a statement that "the settlements do not change the Company's position that it did not engage in any deliberate scheme to install defeat devices to cheat emissions tests." The company did not admit liability. "You wouldn't pay $311 million total dollars to the federal government in civil penalties if there were not a serious problem," U.S. assistant attorney general Jeff Clark told a news conference. The settlement also includes $72.5 million for state civil penalties, and $33.5 million in payments to California to offset excess emissions and consumer claims. German auto supplier Robert Bosch GmbH, which provided the emissions control software for the vehicles, also agreed to pay $27.5 million to resolve claims from diesel owners. Owners will receive an average of $2,800 to obtain software updates as part of the emissions recall, Fiat Chrysler said. Elizabeth Cabraser, a lawyer for the owners, said the "substantial cash compensation" will ensure that consumers get the recall fix. Bosch, which also provided diesel emissions software to Volkswagen, also agreed to pay $103.5 million to settle claims with 47 U.S. states that said the supplier "enabled" the cheating and should have known its customers would use the software improperly, the New York Attorney General's Office said.

FCA UConnect fiasco could set over-the-air updates back years

Since cars have become more software dependent, most major automakers have been inching toward enabling over-the-air updates to keep vehicle electronics, ranging from infotainment systems to safety features, current. But there are only two car companies — Fiat Chrysler and Ford —± currently doing OTA updates, and on a limited basis. GM CEO Mary Barra announced last summer that the automaker will launch a new EV architecture and infotainment system capable of over-the-air updates "before 2020." The one exception, per usual, is Tesla. Since the release of the Model S almost six years ago, the maverick EV automaker has made routine OTA software updates a core part of its vehicle platforms and value proposition, and has sent out updates for everything from adjusting ride height to enabling Autopilot, largely without incident. When I've asked automakers why they can't do the same thing, I've heard reasons ranging from running afoul of their dealers (and archiac regulation) to security concerns. Automakers like Ford and General Motors say they want to act like tech companies, which routinely send out OTA updates for a wide range of devices, but overall the car industry still moves at a very cautious snail's pace. And when automakers do try to move faster and take more risks — unlike with a smartphone update, which people bitch about but live with — the consequences can be significant when things go wrong. That's the case with Fiat Chrysler America and its recent public-relations nightmare when an OTA update went awry. The update went out at the end of last week for the Uconnect system in late-model vehicles, and it made head units go into a near continuous reboot, which caused owners to not only lose access to entertainment features, but also critical functions like emergency assistance. Almost immediately, owners took to Twitter to express outrage, and FCA was caught flatfooted. A tweet went out on Monday on the UconnectCares Twitter account that read, "Certain 2017 & 2018 Uconnect systems may experience a reboot every 45-60 seconds. Our Engineering teams are investigating the cause and working towards a resolution.