2003 Jeep Liberty Renegade on 2040-cars

Auto blog

Feds fretting over remote hack of Jeep Cherokee

A cyber-security gap that allowed for the remote hacking of a Jeep Cherokee has federal officials concerned. An associate administrator with the National Highway Traffic Safety Administration said Thursday that news of the breach conducted by researchers Chris Valasek and Charlie Miller had "floated around the entire federal government." "The Homeland Security folks sent out broadcasts that, 'Here's an issue that needs to be addressed,'" said Nathaniel Beuse, an associate administrator with the National Highway Traffic Safety Administration. Valasek and Miller commandeered remote control of the Cherokee through a security flaw in the cellular connection to the car's Uconnect infotainment system. From his Pittsburgh home, Valasek manipulated critical safety inputs, such as transmission function, on Miller's Jeep as he drove along a highway near St. Louis, MO. The scope of the remote breach is believed to be the first of its kind. The prominent cyber-security researchers needed no prior access to the vehicle to perform the hack, and the scope of the remote breach is believed to be the first of its kind. A NHTSA spokesperson said the agency's cyber-security staff members are "putting their expertise to work assessing this threat and the response, and we will take action if we determine it's necessary to protect safety." A Homeland Security spokesperson referred questions about the hack to Chrysler. Fiat Chrysler Automobiles has already been the subject of a federal hearing this month, in which officials scrutinized whether the company had adequately fixed recalled vehicles and repeatedly failed to notify the government about defects. But cyber-security concerns are a new and different species for the regulatory agency. Only hours before the Jeep hack was announced by Wired magazine earlier this week, NHTSA administrator Dr. Mark Rosekind said hacking vulnerabilities were a threat to privacy, safety, and the public's trust with new connected and autonomous technologies that allow vehicles to communicate. NHTSA outlined its response to the cyber-security challenges facing the industry in a report issued Tuesday. In it, the agency summarized its best practices for thwarting attacks and said it will analyze possible real-time infiltration responses. But the agency's ability to handle hackers may only go so far.

Chrysler recalls 350k vehicles over ignition switches

Chrysler has announced a recall covering 349,442 vehicles due to ignition switches that can either become stuck or move without warning. All of the affected vehicles are from the 2008 model year, and were built before May 12, 2008.
The automaker has learned that ignition keys on some vehicles "may not fully return to the 'ON' position after rotation to the 'START' position during engine-startup," the company said in a statement. Additionally, "an ignition key may not fully return to the 'ON' position after rotation to the 'START' position and may inadvertently move through the 'ON' position to 'ACCESSORY' or 'OFF.'"
Chrysler says it is unaware of any related injuries, and notes that while reduced braking, engine or steering power is possible in such instances, the airbags are not affected. The later stands in contrast to General Motors' recent rash of high-profile recalls, and it's an important distinction that Chrysler (understandably) felt necessary to call out in bold print in its press release.

Federal grand jury issues subpoenas to U.S. FCA dealers

Despite an attempt to clarify and backtrack, it seems the investigation into Fiat Chrysler Automobile's false sales reporting is picking up steam. According to Automotive News, FCA dealers and regional offices have received subpoenas ordering them to supply documents and testimony to a grand jury in Detroit. Of course, the dealers are objecting to the request. They claim the subpoenas are too broad and would require them to hand over too much personal information, like personal phone numbers of dealer employees going back years. The group wants to make it clear that FCA has clarified its sales reporting and that the issue is with the manufacturer, not dealers. The dealers say that FCA employee records and testimony should be enough. It's rumored that a dealer group is the one that sparked the investigation in the first place. FCA confirmed on July 18 that it indeed was under investigation by a number of federal agencies. Although they've clarified their position regarding sales reporting, the fraud investigation continues full steam. Related Video: