1997 Jeep Cherokee Sport on 2040-cars

Auto blog

Feds fretting over remote hack of Jeep Cherokee

A cyber-security gap that allowed for the remote hacking of a Jeep Cherokee has federal officials concerned. An associate administrator with the National Highway Traffic Safety Administration said Thursday that news of the breach conducted by researchers Chris Valasek and Charlie Miller had "floated around the entire federal government." "The Homeland Security folks sent out broadcasts that, 'Here's an issue that needs to be addressed,'" said Nathaniel Beuse, an associate administrator with the National Highway Traffic Safety Administration. Valasek and Miller commandeered remote control of the Cherokee through a security flaw in the cellular connection to the car's Uconnect infotainment system. From his Pittsburgh home, Valasek manipulated critical safety inputs, such as transmission function, on Miller's Jeep as he drove along a highway near St. Louis, MO. The scope of the remote breach is believed to be the first of its kind. The prominent cyber-security researchers needed no prior access to the vehicle to perform the hack, and the scope of the remote breach is believed to be the first of its kind. A NHTSA spokesperson said the agency's cyber-security staff members are "putting their expertise to work assessing this threat and the response, and we will take action if we determine it's necessary to protect safety." A Homeland Security spokesperson referred questions about the hack to Chrysler. Fiat Chrysler Automobiles has already been the subject of a federal hearing this month, in which officials scrutinized whether the company had adequately fixed recalled vehicles and repeatedly failed to notify the government about defects. But cyber-security concerns are a new and different species for the regulatory agency. Only hours before the Jeep hack was announced by Wired magazine earlier this week, NHTSA administrator Dr. Mark Rosekind said hacking vulnerabilities were a threat to privacy, safety, and the public's trust with new connected and autonomous technologies that allow vehicles to communicate. NHTSA outlined its response to the cyber-security challenges facing the industry in a report issued Tuesday. In it, the agency summarized its best practices for thwarting attacks and said it will analyze possible real-time infiltration responses. But the agency's ability to handle hackers may only go so far.

The 2018 Jeep Wrangler will look a lot like the 2017 Jeep Wrangler

JL Wrangler Forums suggests the next-generation Wrangler will be restyled in an evolutionary way that maintains the off-roader's classic looks yet adds new features. The forum used intelligence from spy photos and leaked images to assemble renderings of the new Wrangler. They show that the front end is still classically Jeep, but with modern updates. The LED headlights and turn signals revealed in FCA drawings are noticeable changes. An interesting touch is just behind the rear bumper, where there appears to be an air dam for aerodynamics. There's still a gap between it and the front fenders to keep the old-school look intact. The grille, windshield, and hood are also more raked for the sake of aerodynamics. At the back, the lights follow the FCA drawings as well, though the reverse lights from those illustrations appear to be absent. The square taillights are also shown on the truck variant, along with the plastic fender flares of the SUV version. Spy photos of the Wrangler pickup have shown a streamlined box with integrated taillights akin to the Ram, but it's likely to be a placeholder until the final design is selected. The sides of both models also feature more squared-off details in the top and door handles, generally with beveled corners for a more modern look. The top is where things get fuzzy. The new model might lose its removable top altogether, in favor of removable panels similar to the Jeep Renegade. JL Wrangler Forums illustrated how this could work in the above image. The roof can be removed in sections, and the rear-most windows can also be taken out. The overall effect is similar to that of a current Wrangler Unlimited. There is a potential drawback to this system, though. All of these hard panels will have to be left somewhere. And unlike the current model, this one wouldn't have a soft-top back-up when the weather turns. It's hard to say for sure if this design will make it to production. FCA has consistently and effectively hidden this part of its Wrangler prototypes since they were first spotted. At this point, we can only speculate on how the top will function. Otherwise, these renderings seem plausible, and we should know how accurate they are when the Wrangler makes its expected debut next year. The new Wrangler will likely have some aluminum body panels, an 8-speed automatic and an available diesel powertrain. For more details and spy photos, check out our post that has assembled everything we know so far about the 2018 Wrangler.

FCA will pay you to hack its systems

FCA is willing to pay you to hack its cars, as long as you tell the company how you did it. In an effort to enhance cybersecurity and prevent future incidents like the Jeep Cherokee hack last year, FCA announced it's working with Bugcrowd to find vulnerabilities in its vehicle software. Bugcrowd labels itself as a crowdsourced application security testing company. Users, or independent security researchers as Bugcrowd calls them, can find exploits or vulnerabilities in FCA systems. They then submit the information to Bugcrowd, who in turn supplies the info to FCA. The goal is to update systems and close any possible security breaches. FCA is offering bounties from $150 to $1,500 to any Mr. Robot types, with payment based on the size and severity of the flaw. FCA wants hackers to focus specifically on the UConnect website and the company's iOS and Android apps. No bounties will be given for anything outside the scope of those three things. Bugcrowd says it will not take any legal action against anyone who submits an exploit. While we think it's good that the company is taking steps to address these problems, it's not a groundbreaking maneuver. Other companies employ similar systems. Earlier this year, both Tesla and Uber announced that they're willing to offer up to $10,000 to hackers who find vulnerabilities in their system. For years, Microsoft has been paying hackers to find exploits. It also seems that FCA took its time to announce this plan, considering the Jeep hack happened nearly a year ago. If the partnership works, we can expect other automakers to make similar deals. Related Video: This content is hosted by a third party. To view it, please update your privacy preferences. Manage Settings. News Source: FCA, Bugcrowd Jeep Safety Technology Infotainment Smartphone FCA