2023 Jeep Wrangler 2023 Jeep Wrangler Rubicon 392 20th Anniversary V8 on 2040-cars

Auto blog

Jeep hackers return to take over your steering wheel

Last year, security researchers Charlie Miller and Chris Valasek made headlines by remotely hacking a Jeep, killing the transmission and applying the brakes while Wired reporter Andy Greenberg was behind the wheel and driving in traffic. The hack led to a 1.4 million-vehicle recall for Fiat Chrysler and new jobs at Uber's Advanced Technology Center for Miller and Valasek. Despite the cushy new gigs, the two of them apparently aren't done hacking Jeep Cherokees for sport. In their latest exploit, the pair can gain even more control over a vehicle, but it would also be extremely difficult to pull off in a real-world setting. Here's the harrowing part first: Miller and Valasek can do more than just apply the brakes at low speed or cut the transmission this time around. Now they can turn on the parking brake, mess with the cruise control and hijack the auto-parking system to jerk the steering wheel a dangerous 180 degrees while the car is in motion. It looks about as frightening as it sounds: This content is hosted by a third party. To view it, please update your privacy preferences. Manage Settings. Although it's not hard to see how that would make for a very terrifying drive, there's a big grain of salt that comes along with it: Miller and Valasek actually used the same model 2014 Jeep Cherokee as the original demonstration, but without the software patch applied. Or, as Wired put it, "imagine an alternate reality," where a fix had never been made. Unlike before, the latest hack requires a physical connection plugging their laptop into the Jeep's OBD-II diagnostic port under the dash. The team also had to update the Jeep with their own firmware to disable some of the car's built-in safety checks before they could get much control. In other words: In order to get hacked, Jeep owners would first need to roll back their car's firmware to an older version, invite someone to remove security features and then also let them ride shotgun with a computer. Or, as Engadget's resident security expert Violet Blue wrote on Twitter, it's sort of a non-threat. This content is hosted by a third party. To view it, please update your privacy preferences. Manage Settings. That said, The Verge points out that it may still be possible to exploit OBD-connected wireless dongles like the Metromile Tag, Automatic Link or other similar devices currently marketed by insurance companies.

Are future vehicular hacks inevitable?

Before the hack of the Uconnect system in a Jeep Cherokee resulted in a 1.4-million vehicle recall, the potential software vulnerabilities in vehicles were already a hot topic with Congressional inquiries and even proposed legislation in the US. As cars' interconnected systems gain the ability to go online, they become open to a host of new threats. Automakers are trying to stop this, but it might be too late to put the genie back into the bottle. Throughout 2015, the issue of software security in vehicles has become increasingly vital. For example, the recent Jeep case wasn't even the biggest hack this year. In February, a major flaw was discovered in the BMW Connected Drive service that allowed researchers to remotely lock and unlock the doors and potentially affected 2.2 million cars. The fix was an over-the-air patch for the problem. Automakers are actively working to fix the issues. Mercedes-Benz, BMW, and Audi reportedly are using encrypted connections and firewalls in their vehicles to prevent hacking. "Absolute, 100-percent safety isn't possible," Daimler spokesperson Benjamin Oberkersch said to Automotive News Europe. "But we develop our systems, tested by internal and external experts, so they're up to date." These vulnerabilities seem to be popping up more often. A successful hack took $14 in parts from Radio Shack in one case. There was also a 60 Minutes report earlier in the year about DARPA's ability to hack into OnStar to take control of a Chevrolet Impala. Experts aren't so sure companies can contend with hackers' advancement. "The difficulty for the carmakers at the moment is the question whether they can keep pace with advances in technology, and especially hacking technology," Rainer Scholz, executive director for telematics consultant EY, said to Automotive News Europe. "We seriously doubt they can." At this point, vehicle hacks are coming more from researchers looking for holes than from those with malicious intent. Still, the vulnerabilities are definitely there. It's up to automakers to keep patching the problems before they become dangerous to drivers. Related Video: News Source: Automotive News Europe - sub. req.Image Credit: Bill O'Leary / The Washington Post via Getty Images Audi BMW Jeep Mercedes-Benz Safety Technology Emerging Technologies hacking cyber security

FCA reportedly joins the crowd skipping this year's Paris Motor Show

It's likely FCA vehicles will not be seen at the Paris Motor Show this year. Automotive News is reporting that Fiats, Alfa Romeos, Jeeps and Abarths will not be a part at the show, based on information circulating in the French media. There's a possibility that Maseratis will be displayed at a special section dedicated to upscale cars, but Maserati too will not have a show stand of its own. Ferrari will have a stand, but as it happens, the supercar maker has been a standalone brand since 2015. Skipping the Paris show follows FCA's decision not to take part in the Frankfurt show last year, and the two shows alternate as the biggest autumnal automotive show in Europe. Volkswagen will also not attend the event, and neither will Ford, Nissan or Infiniti. This has become a problem for car shows worldwide, including Detroit's North American International Auto Show. FCA has not released a formal statement about the matter, but a FCA spokesman, quoted by the French magazine L'Argus, reportedly said that the sales and publicity brought in by the show stand would not justify the costs of attending. The news mirrors Volvo's newly announced plan to not take part at the next Geneva Motor Show, but to arrange "bespoke activities" to introduce its cars instead. Related Video: