Skip to main content
  1. Home
  2. Cars
  3. News

Latest Jeep hack reminds us why we should keep our cars’ software updated

By

Jeep Cherokee
Image used with permission by copyright holder
Last year, security researchers Charlie Miller and Chris Valasek demonstrated the threat of car hacking in a dramatic way, by taking control of a Jeep Cherokee’s transmission and brakes while the car was moving. Now they’re back with new hacks that seem more sinister, but may not pose an actual threat in the real world.

Miller and Valasek can now mess with more than the transmission and brakes. They can activate the parking brake, tamper with the cruise control, and use the Cherokee’s automated parking system to jerk the steering wheel 180 degrees while the car is in motion, according to Engadget. That doesn’t sound good.

Recommended Videos

However, that ability to sow mayhem comes with an asterisk. After Miller and Valasek revealed their first Jeep hack, Fiat Chrysler Automobiles (FCA) initiated a recall of 1.4 million cars to update software and eliminate the weak point the two security researchers exploited. For this second demonstration, though, Miller and Valasek used the same 2014 Cherokee as before. FCA claims the vehicle did receive the software update as part of last year’s recall, but that it had been “altered back to an older level of software.”

Read more: Worried about car hacking? FBI and DOT offer safety tips

Unlike the previous hack, this one also required a physical connection: a laptop was plugged into the Cherokee’s OBD-II diagnostic port the whole time. Miller and Valasek also had to install their own firmware, which disabled some of the car’s built security features, before they could gain control of the steering and other systems. Given that, it’s unlikely someone would be able to execute this hack in the real world without the target’s knowledge.

It’s worth noting that, as The Verge points out, hackers could gain access to a car’s OBD-II port through diagnostic devices like the Verizon Hum and Automatic Adapter, or the devices issued by insurance companies to track driver behavior in exchange for the possibility of rate discounts. The proliferation of these devices further erodes the wall that used to separate car systems from the world at large.

Updated on 08-03-2016 by Stephen Edelstein: FCA issued a statement in response to the latest Miller and Valasek hack. The carmaker noted that accomplishing the hack required “extensive technical knowledge” and physical access to the OBD-11 port. FCA also said that the Jeep Cherokee used in the demonstration had been updated to address the security issue exposed last year, but that its had been “altered back to an older level of software.”

“Based on the material provided, while we admire their creativity, it appears that the researchers have not identified any new remote way to compromise a 2014 Jeep Cherokee or other FCA U.S. vehicles,” the company said.

Topics
Stephen Edelstein
Stephen Edelstein
Contributing Editor
Stephen is a freelance automotive journalist covering all things cars. He likes anything with four wheels, from classic cars…
Eaton, Treehouse to boost home capacity for EV charging, energy storage
eaton treehouse ev charging news releases

Power-management firm Eaton likes to point out that when it launched in 1911, it invested in a new idea -- the very first gear-driven truck axle -- just at a time when both transportation and power management were on the cusp of dramatic change.
More than 113 years later, Eaton is again seeking to lead innovation in the current energy transition.
The power-management firm just signed a deal with Treehouse, an AI, software-enabled installation platform for electrification projects. The end goal: accelerating the electrification of homes for electric-vehicle (EV) charging, energy storage, or heat pumps, while seeking more efficiency and cost savings.
“At Eaton, we’re all-in on the energy transition and we’re making it happen at scale by delivering breakout technologies and industry collaborations needed to delight customers and make it more accessible and affordable,” says Paul Ryan, general manager of Connected Solutions and EV Charging at Eaton.
The partnership will ensure consumers are provided with accurate and fast pricing, as well as access to licensed electricians to deliver code-compliant installations, the companies say.
The collaboration also integrates into Eaton’s “Home as a Grid” approach, which supports the two-way flow of electricity, enabling homeowners to produce and consume renewable energy when they need it, Eaton says.
“For more than a century, power has flowed in one direction—from centralized power plants into homes,” the company says. “Today, there’s a new reality thanks to solar, electric-vehicle charging, energy storage, digitalization, and more.”
Projects to change homes and EVs into energy hubs have multiplied recently.
Last month, Nissan joined ChargeScape, a vehicle-to-grid (V2G) venture that is already backed by BMW, Ford, and Honda. ChargeScape’s software wirelessly connects EVs to power grids and utility companies, enabling consumers to receive financial incentives for temporarily pausing charging during periods of high demand. Eventually, consumers should also be able to sell the energy stored in their EVs’ battery back to the power grid.
In August, GM announced that V2G technology will become standard in all its model year 2026 models. And Tesla CEO Elon Musk has hinted that Tesla could introduce V2G technology for its vehicles in 2025.

Read more
Chrysler, Dodge, Jeep and EVs offer big incentives as year nears its end
chrysler dodge jeep ev incentives record my24 hybrid gallery 04 exterior desktop jpg image 1440

It’s no secret that automakers and dealerships typically climb over each other to offer the best incentives before the year ends. But this year’s sales season is expected to be particularly competitive, with slowing sales translating to greater urgency to clear inventory.

According to research from Kelley Blue Book, the respected vehicle-valuation firm, overall incentives on new vehicle sales were up by 60% in October compared to the previous year.

Read more
Jeep, Ram EREVs will get 690-mile range with new Stellantis platform
A 2025 Ram 1500 Ramcharger sits in a vineyard.

Stellantis, the giant automotive group, is betting big on extending the range of both its hybrid and fully electric vehicles (EVs).

Last month, the company, which owns the Jeep, Dodge, and Ram brands in the U.S., invested nearly $30 million into an advanced wind tunnel at its research center in Auburn Hills, Michigan. The goal is to study airflow around a vehicle’s wheels and tires to further optimize its EVs and boost their range.

Read more