2010 Jeep Sport on 2040-cars

Auto blog

Autoblog Minute: FCA issues Uconnect software update amid hacking fears

Carjacking has gone wireless, as automakers and Congress scramble for a solution after a disturbing video on Wired showed a pair of researchers controlling a Jeep Cherokee remotely. Autoblog's Adam Morath and David Gluckman report on this edition of Autoblog Minute. Show full video transcript text [00:00:00] Carjacking has gone wireless, as automakers and Congress scramble for a solution. I'm Adam Morath and this is your Autoblog Minute. Cars with wireless connections are susceptible to remote hacking, as demonstrated in a disturbing video on Wired.com. The segment showed two researchers remotely controlling a Jeep Cherokee, including running vehicle's the wipers, turning up the music, and ultimately shutting down [00:00:30] the Jeep while it was being driven on the highway by Wired senior writer Andy Greenberg. Washington took note. A press release issued from the desks of senators Ed Markey and Richard Blumenthal introduces legislation protecting drivers from auto security privacy risks. Fiat Chrysler, parent company of Jeep, has a solution for its customers. For more we go to Autoblog's David Gluckman. [GLUCKMAN INTERVIEW] Chrysler has worked with the Uconnect cellular provider Sprint to plug security holes on the carrier side. The vehicles themselves can't be updated wirelessly, so [00:01:00] the remaining changes require physical access. For that, customers have three options: One, download the Uconnect software update to a USB stick and install. Two, wait for FCA to send a USB stick with the latest software that they can install, or third, visit a dealer. Owners should do what they're most comfortable with. I made a video that walks through the whole process from download to install and it took about a half hour. [MORATH] David's full video tutorial of how to install the Uconnect fix can be seen on Autoblog. [00:01:30] It remains to be seen how the rest of the auto industry will respond to these security risks. For Autoblog, I'm Adam Morath. Related Video: Autoblog Minute is a short-form news video series reporting on all things automotive. Each segment offers a quick and clear picture of what's happening in the automotive industry from the perspective of Autoblog's expert editorial staff, auto executives, and industry professionals.

Are future vehicular hacks inevitable?

Before the hack of the Uconnect system in a Jeep Cherokee resulted in a 1.4-million vehicle recall, the potential software vulnerabilities in vehicles were already a hot topic with Congressional inquiries and even proposed legislation in the US. As cars' interconnected systems gain the ability to go online, they become open to a host of new threats. Automakers are trying to stop this, but it might be too late to put the genie back into the bottle. Throughout 2015, the issue of software security in vehicles has become increasingly vital. For example, the recent Jeep case wasn't even the biggest hack this year. In February, a major flaw was discovered in the BMW Connected Drive service that allowed researchers to remotely lock and unlock the doors and potentially affected 2.2 million cars. The fix was an over-the-air patch for the problem. Automakers are actively working to fix the issues. Mercedes-Benz, BMW, and Audi reportedly are using encrypted connections and firewalls in their vehicles to prevent hacking. "Absolute, 100-percent safety isn't possible," Daimler spokesperson Benjamin Oberkersch said to Automotive News Europe. "But we develop our systems, tested by internal and external experts, so they're up to date." These vulnerabilities seem to be popping up more often. A successful hack took $14 in parts from Radio Shack in one case. There was also a 60 Minutes report earlier in the year about DARPA's ability to hack into OnStar to take control of a Chevrolet Impala. Experts aren't so sure companies can contend with hackers' advancement. "The difficulty for the carmakers at the moment is the question whether they can keep pace with advances in technology, and especially hacking technology," Rainer Scholz, executive director for telematics consultant EY, said to Automotive News Europe. "We seriously doubt they can." At this point, vehicle hacks are coming more from researchers looking for holes than from those with malicious intent. Still, the vulnerabilities are definitely there. It's up to automakers to keep patching the problems before they become dangerous to drivers. Related Video: News Source: Automotive News Europe - sub. req.Image Credit: Bill O'Leary / The Washington Post via Getty Images Audi BMW Jeep Mercedes-Benz Safety Technology Emerging Technologies hacking cyber security

Chrysler Recalls 350K Vehicles To Fix Ignition Switches

Chrysler is recalling nearly 350,000 cars and SUVs to fix ignition switches that could unexpectedly shut off the engines. The recall covers 2008 Jeep Commander and Grand Cherokee SUVs, Chrysler 300 and Dodge Charger sedans, and Dodge Magnum wagons. All were built before May 12, 2008. Chrysler says the ignitions may not fully return to the "on" position after being started. The switches could move to "accessory" or "off." That could shut off the engine and knock out power-assisted steering and other features. Chrysler knows of one crash and no injuries from the problem. It's telling people to use the key alone in the ignition and confirm that switches have returned to "on" after starting their cars. Chrysler is investigating the cause. Customers will be notified when repairs are ready. Related Gallery The Trucks And SUVs Consumers Are Liking Most View 11 Photos