2023 Jeep Compass 4x4 2.0t High Altitude-edition(new Was $40,430) on 2040-cars

Auto blog

Weekly Recap: Hackers demonstrate auto industry's vulnerability

There's always been a certain risk associated with driving, and this week cyber security came into focus as the latest danger zone when researchers demonstrated how easily they could hack into a 2014 Jeep Cherokee from across the country. The incident raised concerns over the vulnerability of today's cars, many of which double as smartphones and hot spots. During the now-infamous experiment, Chris Valasek and Charlie Miller infiltrated the Jeep's cellular connection and were able to control the infotainment system, brakes, and other functions. The hackers told the Jeep's maker, FCA US, of their findings last year, the company devised a software fix. Though Valesek and Miller hacked a Cherokee (like the one shown above), several FCA products, including recent versions of the Ram, Grand Cherokee, Dodge Durango, and Viper were also affected, illustrating potentially wide exposure that could reverberate across the sector. "For the auto industry, this is a very important event and shows that cyber-security protection is needed even sooner than previously planned," Egil Juliussen, senior analyst and research director for IHS Automotive, wrote in a research note. "Five years ago, the auto industry did not consider cyber security as a near-term problem. This view has changed." Hours after the Cherokee hacking incident was publicized on Tuesday, Sens. Ed Markey (D-Mass) and Richard Blumenthal (D-Conn) introduced legislation to direct the National Highway Traffic Safety Administration and Federal Trade Commission to establish national standards for automotive cyber security. The bill also would require vehicles to have a cyber-rating system to alert consumers how well their cars' privacy and security are defended. "Drivers shouldn't have to choose between being connected and being protected," Markey said in a statement. "We need clear rules of the road that protect cars from hackers and American families from data trackers." Though FCA and its Jeep Cherokee were in the spotlight this time, they were just the latest to showcase how automotive technology has advanced faster than safety and regulatory measures. IHS forecasts 82.5 million cars will be connected to the internet by 2022, which is more than three times today's level. "Cyber-security will become a major challenge for the auto industry and solutions are long overdue," Juliussen said.

Driving the Toyota Supra, Honda Passport and BMW 3 Series | Autoblog Podcast #582

In this week's Autoblog Podcast, Editor-in-Chief Greg Migliore is joined by Green Editor John Beltz Snyder and West Coast Editor James Riswick. First, they talk about the cars they've been driving, including the Honda Passport, BMW 330i and Audi RS5. They follow up with notes about driving the Toyota Supra and 86, and whether Toyota's new sports car strategy makes sense. Then they discuss the news, including the Ferrari SF90 Stradale plug-in hybrid, a possible Renault-FCA merger, death rumors for the Jaguar XJ and thoughts on the upcoming Chevy Trailblazer. Autoblog Podcast #582 Get The Podcast iTunes – Subscribe to the Autoblog Podcast in iTunes RSS – Add the Autoblog Podcast feed to your RSS aggregator MP3 – Download the MP3 directly Rundown Cars we're driving: 2019 Honda Passport 2019 BMW 330i 2019 Audi RS5 Sportback Toyota Supra, 86 and the company's sports car strategy In the news: Ferrari SF90 Stradale FCA and Renault Jaguar XJ going away? Chevy Trailblazer Feedback Email – Podcast@Autoblog.com Review the show on iTunes Related Video:

FCA believes thieves aren't getting into Jeeps with laptops

Last week, we reported on an incident where thieves stole a 2010 Jeep Wrangler from an owner's driveway in Houston, TX with nothing but a laptop. While the security footage made it seem like the perpetrator hacked into the vehicle, we had a conversation with FCA's senior manager of security architecture Titus Melnyk who set the record straight. According to Melnyk, the thief in the video isn't using the laptop to get into the vehicle, but rather as a means of coding a blank key fob and then using that fob to get into the Jeep. According to Melnyk, the suspects have gained access to a key programming tool, which allows them to pair blank key fobs to FCA vehicles. With the key fob now coded, the suspects can get into the vehicle and drive away. The thieves, believes Melnyk, have acquired the programming tool through a dishonest dealership or locksmith. Since the suspects are using a process designed to be used (honestly) by dealers, FCA doesn't consider this to be hacking and believes that there are no security flaws in the vehicles. How are the thieves getting key fobs? While Melnyk believes it is possible to recode an existing key fob, he points out that it's much easier to purchase a blank key fob on Ebay for less than $25. FCA is working closely with the Houston Police Department to apprehend the suspects. Related Video: Jeep Technology SUV Videos viral video hacking thieves