Hackers wirelessly disable a Jeep Cherokee from 10 miles away with Uconnect

2015 Jeep Cherokee
The thought of “hackers” being able to shut down cars was confined to the hyperbolic ranting of paranoid technophobes just a few years ago. But with digital control now woven into nearly every automotive system, from in-dash entertainment to engine and braking control, the door for exploitation is open wide. And two software engineers just barged right through it, bringing a Jeep Cherokee to a dead stop right from the comfort of their living room.

Charlie Miller and Chris Valasek reached out to Wired writer Andy Greenberg to demonstrate how in-car connectivity can leave vehicles vulnerable to exploits beyond just messing with the radio. The duo discovered that Uconnect, the cellular-based infotainment system in Fiat-Chrysler vehicles, has a vulnerability that allows unprecedented access to the vehicle.

Anyone with the proper knowhow, software, and the vehicle’s IP address can exploit this and engage in a multitude of attacks. From a laptop miles away, the duo can take over the entertainment system, cranking the radio volume up and displaying images on the dash-mounted LED interface screen. They can even control the wipers and influence the digital gauge cluster.

uconnect-press
FCA’s Uconnect interface

But things get more serious: The engineers can totally kill the engine at slow speeds, or shift the transmission to neutral and leave the engine to rev helplessly, halting the Jeep used in the demonstration. The Jeep Cherokee has an available park-assist system which was also fair game for hacking. Normally, sensors guide servos in the steering wheel into a selected parking spot, but when broken into, the engineers could also take hold of that system too, essentially driving the car themselves. Fortunately for owners, that particular trick seems to work only when the car is in reverse. For now, anyway.

“I’d just stomp on the brakes and get out,” you might say, but the hackers are a step ahead of you there, too. Not only can they engage the door locks, but they can remotely kill the brakes, taking that last shred of control away from the driver.

Miller and Valasek have notified Fiat Chrysler Automobiles (FCA) of the Uconnect vulnerability, and the manufacturer pledges to issue a patch to hopefully plug the hole. They also stress that this is a larger issue all automakers need to be aware of, particularly with the growing trend toward semi-to-fully autonomous systems being developed in passenger cars. Taking control of a car might be the more extreme result of this security hole, but possibly more scary is what can be done without the driver being aware. Breaking into the car’s system reveals the vehicle’s GPS location, as well as the VIN and other user data that could be used in nefarious ways.

“If consumers don’t realize this is an issue, they should, and they should start complaining to carmakers,” Miller says. “This might be the kind of software bug most likely to kill someone.”

Cars

2020 Toyota Corolla sedan aims to offer sharper handling, better tech

The 2020 Toyota Corolla sedan gets the same upgrades as the recently-introduced Corolla hatchback, including a firmer foundation, new engine, and more tech features. Will that be enough to keep the long-lived Corolla nameplate relevant?
Cars

Jeep’s outdoorsy Gladiator pickup truck bares it all ahead of schedule

Jeep will introduce the long-promised Wrangler-based pickup truck at the 2018 Los Angeles Auto Show. Named Gladiator, the model was designed to conquer the great outdoors, not for the construction site.
Cars

Our favorite fuel-efficient cars are as frugal as they are fun

You don't need to opt for a hybrid or an all-electric ride in order to achieve good fuel economy. These vehicles pack both performance and style, whether you're in the market for a luxury sedan or a game-changing pickup truck.
Cars

Where are you going this weekend? These 5 off-road vehicles say 'anywhere'

The body-on-frame SUV is going extinct, but there are still several options for buyers looking to skip the asphalt. To help you sort the good from the bad, we've rounded up the best off-roaders currently available.
Cars

Prep your car for the coming snow and sleet with these cold weather tips

Driving in the winter, whether downtown or across the country, is rarely easy. Luckily, we've put together a quick rundown of a few things you should do to winterize your car before the snow officially hits.
Digital Trends Live

DT Daily: Waymo’s driverless cars, ‘Fallout 76’ tips, and Racella

In today's episode of DT Daily, we discuss Waymo's foray into the ridesharing sector, along with various tips for making the most of the recently launched Fallout 76. We also sit down with singer Racella to chat about her new EP, Waves.
Cars

Many adults believe fully self-driving cars are already traversing U.S. highways

The American Automobile Association tested cars with features such as lane-keeping and adaptive cruise control and found them lacking in real-world conditions. Forty percent of surveyed U.S. adults think self-driving cars exist now.
Cars

Want to keep connected on the road? Here are 5 ways to add Bluetooth to your car

The best way to make an old ride feel young again is to bring it up speed with the 21st century. Here's how to properly add Bluetooth to your vehicle, via independent kits, vehicle adapters, or aftermarket head units.
Cars

The hamster-friendly 2020 Kia Soul will rock out at the Los Angeles Auto Show

Kia has released a teaser image to preview the next Soul. Scheduled to make its debut at the 2018 Los Angeles Auto Show, the 2020 Soul will keep the outgoing model's boxy proportions but it will wear a sharper design.
Cars

Startup Rivian exits stealth mode with a bold promise to electrify off-roaders

Electric car startup Rivian has finally turned off stealth mode and provided details about what it's been working on since 2009. It will build battery-powered off-roaders instead of taking on Tesla and others in the luxury EV segment.
Cars

Honda will squeeze another model into its SUV lineup at the Los Angeles show

Honda will introduce a new SUV with a familiar nameplate at the 2018 Los Angeles auto show. It envisioned the 2019 Passport as a five-seater alternative to the eight-seater Pilot. The two models will share a platform and many tech features.
Cars

Uber rolls out rewards program that lets its most loyal riders lock in prices

Uber launched a new loyalty program today called Uber Rewards. It offers frequent riders credits to Uber Eats, car upgrades, and the ability to lock in prices on their most traveled routes.
Cars

The world’s first 3D-printed titanium wheels are so intricate they look fake

HRE Performance Wheels and GE Additive have teamed up to create the world's first 3D-printed titanium wheels. They are not only impressively durable, but extremely lightweight as well.
Cars

Fisker failed. But now the EV pioneer is ready for an epic redo

Henrik Fisker has already had a career most executives can only dream about. He designed the BMZ Z8, a couple of Aston Martins, and his own Fisker Karma. But he’s got a plan to disrupt the auto industry, forged by lessons learned over the…