2001 Gray Sport! on 2040-cars

Auto blog

Supplier says Jeep Cherokee hack only affects FCA cars

Harman doesn't think that drivers need to worry about any further hacks of its products. The company supplies FCA's Uconnect infotainment system where a software vulnerability is responsible for a 1.4-million vehicle recall. "This experimental hack is unique to Chrysler," Harman CEO Dinesh Paliwal said to Automotive News. "This does not exist, to our assessment, in any other vehicle." The reason that the company wouldn't be involved is that automakers aren't simply plugging in the existing infotainment systems into new vehicles. According to Paliwal, Harman supplies the unit, but FCA and other automakers are able to make additional modifications for their vehicles. The National Highway Traffic Safety Administration has also recently taken up the question of broader software vulnerabilities in Harman's products. On July 29, the agency began investigating the company to check for similarities between Uconnect and the infotainment systems supplied to other automakers. The Jeep hack became national news when two researchers were remotely able to take control of a Cherokee. The vulnerability in the cellular connection even gave control over the brakes. "Once people get in the car and get into the CAN bus, then you can start to mimic and mess up many, many things in the car," Paliwal said to Automotive News. Politicians immediately responded with legislation to create federal standards in hopes of protecting drivers better. NHTSA also opened an investigation to make sure the automaker's software update actually solved the problem. Related Video:

FCA will pay you to hack its systems

FCA is willing to pay you to hack its cars, as long as you tell the company how you did it. In an effort to enhance cybersecurity and prevent future incidents like the Jeep Cherokee hack last year, FCA announced it's working with Bugcrowd to find vulnerabilities in its vehicle software. Bugcrowd labels itself as a crowdsourced application security testing company. Users, or independent security researchers as Bugcrowd calls them, can find exploits or vulnerabilities in FCA systems. They then submit the information to Bugcrowd, who in turn supplies the info to FCA. The goal is to update systems and close any possible security breaches. FCA is offering bounties from $150 to $1,500 to any Mr. Robot types, with payment based on the size and severity of the flaw. FCA wants hackers to focus specifically on the UConnect website and the company's iOS and Android apps. No bounties will be given for anything outside the scope of those three things. Bugcrowd says it will not take any legal action against anyone who submits an exploit. While we think it's good that the company is taking steps to address these problems, it's not a groundbreaking maneuver. Other companies employ similar systems. Earlier this year, both Tesla and Uber announced that they're willing to offer up to $10,000 to hackers who find vulnerabilities in their system. For years, Microsoft has been paying hackers to find exploits. It also seems that FCA took its time to announce this plan, considering the Jeep hack happened nearly a year ago. If the partnership works, we can expect other automakers to make similar deals. Related Video: This content is hosted by a third party. To view it, please update your privacy preferences. Manage Settings. News Source: FCA, Bugcrowd Jeep Safety Technology Infotainment Smartphone FCA

FCA to invest $4.5B for new Detroit plant, expanded production at current facilities

We expected some shifts in manufacturing plans as Fiat Chrysler plans to begin electrifying its Jeep brand, but this news bodes well for Michigan. FCA announced today that it would spend $4.5 billion to expand production in the state, including building a new assembly plant in Detroit and increasing capacity at five other facilities in the state. The plan, which FCA says will create nearly 6,500 new jobs, will help to meet increasing demand for Ram and Jeep products, and to electrify Jeep models. $1.6 billion will be set aside to transform the Mack Avenue Engine Complex into a site to build the next generation of Jeep Grand Cherokee, as well as an unspecified, new three-row Jeep model. FCA says this part of the plan will create 3,850 new jobs. FCA is increasing its investment in the Warren Truck plant to $1.5 billion in order to continue building the Ram 1500 Classic, as well as the new Jeep Wagoneer and Grand Wagoneer, creating 1,400 new jobs. FCA says that the new Ram 1500 Heavy Duty will still be built in Saltillo, Mexico. At FCA's Jefferson North facility, the automaker will invest $900 million to upgrade the plant. This site will continue to build the Dodge Durango, as well help build the next Jeep Grand Cherokee. FCA expects this to create 1,100 new jobs. As Jeep plans to electrify models in its SUV lineup, each of the above plants will produce plug-in hybrid versions of the Jeep models produced there, "with flexibility to build fully battery-electric models in the future," the company said in its announcement. "Three years ago, FCA set a course to grow our profitability based on the strength of the Jeep and Ram brands by realigning our U.S. manufacturing operations," said FCA CEO Mike Manley, referring in part to earlier investments in Illinois, Ohio and Michigan. "Today's announcement represents the next step in that strategy," Manley continued. "It allows Jeep to enter two white space segments that offer significant margin opportunities and will enable new electrified Jeep products, including at least four plug-in hybrid vehicles and the flexibility to produce fully battery-electric vehicles." Other investments include $119 million to move production of the 3.0-, 3.2- and 3.6-liter Pentastar engines from Mack I to the Dundee Engine Plant, and $400 million for increased capacity and 80 new jobs at the Sterling and Warren stamping plants. This comes at a time when FCA's U.S.