2014 Chrysler Town & Country Touring on 2040-cars

Auto blog

The problem with how automakers confront hacking threats

More than anyone, Chris Valasek and Charlie Miller are responsible for alerting Americans to the hacking perils awaiting them in their modern-day cars. In 2013, the pair of cyber-security researchers followed in the footsteps of academics at the University of Cal-San Diego and University of Washington, demonstrating it was possible to hack and control cars. Last summer, their research established which vehicles contained inherent security weaknesses. In recent weeks, their latest findings have underscored the far-reaching danger of automotive security breaches. From the comfort of his Pittsburgh home, Valasek exploited a flaw in the cellular connection of a Jeep Cherokee and commandeered control as Miller drove along a St. Louis highway. Remote access. No prior tampering with the vehicle. An industry's nightmare. As a result of their work, FCA US recalled 1.4 million cars, improving safety for millions of motorists. For now, Valasek and Miller are at the forefront of their profession. In a few months, they could be out of jobs. Rather than embrace the skills of software and security experts in confronting the unforeseen downside of connectivity in cars, automakers have been doing their best to stifle independent cyber-security research. Lost in the analysis of the Jeep Cherokee vulnerabilities is the possibility this could be the last study of its kind. In September or October, the U.S. Copyright Office will issue a key ruling that could prevent third-party researchers like Valasek and Miller from accessing the components they need to conduct experiments on vehicles. Researchers have asked for an exemption in the Digital Millennial Copyright Act that would preserve their right to analyze cars, but automakers have opposed that exemption, claiming the software that runs almost every conceivable vehicle function is proprietary. Further, their attorneys have argued the complexity of the software has evolved to a point where safety and security risks arise when third parties start monkeying with the code. Their message on cyber security is, as it has been for years, that they know their products better than anyone else and that it's dangerous for others to meddle with them. But in precise terms, the Jeep Cherokee problems show this is not the case. Valasek and Miller discovered the problem, a security hole in the Sprint cellular connection to the UConnect infotainment system, not industry insiders.

Five automakers now being investigated by NHTSA for airbag woes

It appears that Toyota's renotification to owners of recalled vehicles from last year is just the tip of the iceberg for what could potentially be a much larger industry-wide recall. The National Highway Traffic Safety Administration is opening a preliminary evaluation investigation into roughly 1.1 million vehicles from Chrysler, Honda, Mazda, Nissan, Toyota and parts supplier Takata regarding faulty airbag inflators in several models.
NHTSA has received six reports - three directly, two from Takata and one from Toyota - of vehicles with ruptured airbag inflators from 2002-2006, which resulted in three injuries. So far, all six incidents have occurred in high humidity areas like Florida and Puerto Rico. According to Toyota's latest recall announcement, the inflators may have an improper propellant that could cause it to rupture in a crash and the bag to deploy abnormally.
This new investigation follows a previous recall from April 2013 of about 3.4 million vehicles worldwide for the airbag inflators from Takata. As Autoblog reported, Toyota jumpstarted the new situation when it found that the original list of serial numbers for the faulty part was incomplete and discovered more cars in need of replacement. Honda and Nissan told us that they were investigating whether further models would need called in again as well. Mazda told Autoblog: "Regarding the current Takata situation, we're working closely with NHTSA and investigating the situation, but nothing else to report at this time." Chrysler Group responded to us with the statement: "Chrysler Group engineers are conducting the appropriate analysis. The Company will cooperate fully with the National Highway Traffic Administration."

Strike looms for FCA workers as soon as Wednesday night

A strike is on the very near horizon for at least some United Auto Workers members at FCA US. On October 6, the union sent a letter to the automaker that officially announced the termination of its agreements with the company as of 11:59 PM on Wednesday, October 7. Assuming that a deal or extension hasn't happened by that time, workers could hit the picket line. While neither side is talking much publicly, it does appear that negotiations are still underway. In a very brief statement, the automaker simply says: "FCA US confirms that it has received strike notification from the UAW. The Company continues to work with the UAW in a constructive manner to reach a new agreement." The UAW seems equally receptive, and it says in a post on Facebook: "Negotiations with FCA continue. Your bargaining team is hard at work and we will continue to post updates when there is more to report." If a strike happens, it could put a serious financial burden on FCA US. Economist Sean McAlinden from the Center for Automotive Research estimates the cost at as much as $40 million per week, according to Reuters. The union hasn't clarified at this time whether all of its workers with the automaker would stop working or if the picket lines would only be at specific plants. The first tentative agreement posted to UAW members working with FCA US utterly failed in voting. Raises and a healthcare co-op would have been among the new benefits. However, the employees were upset that the proposed deal retained a two-tier wage structure, and they also didn't like the lack of details about rumors of major production changes.