Hackers can remotely hijack the Jeep Cherokee

Chrysler’s UConnect system uses Sprint’s cellular network for connectivity, so the researchers were able to remotely locate cars by scanning for devices using that particular spectrum band. The carmaker posted a notice on its website informing its customers about a “software update to improve vehicle electronic security”.

Wired reported that the researchers have demonstrated the ability to control the entertainment system, the transmission, and the brakes through the car’s Internet connection.

Miller and Valasek also found that they could take remote control of the steering of their test vehicle, the aforementioned Jeep Cherokee-but only while it was in reverse.

From the entry point – which the researchers will reveal during the Black Hat conference in Las Vegas in August – they move to another chip in the car’s head unit.

Miller and Valasek said they informed Fiat Chrysler of the security flaw about nine months ago, and a security update to close the hole was released July 16.

The issue in this case affects Chrysler vehicles from late 2013 onwards that feature the company’s Uconnect software.

Here’s how: Visit this link, enter your vehicle identification number (here’s a guide to finding it), and download the update. Late-model Chrysler owners with the Uconnect feature can manually update the software by downloading the update, putting it on a USB drive and plugging it into the vehicle’s dashboard port or they can simply bring it to their nearest Chrysler dealership.

From there, consult your car’s manual regarding updating it from the memory stick. There’s no apparent firewall, so once attackers have located the device’s IP, they can deploy previously developed exploits to rewrite Uconnect’s firmware and control the auto as if they had physical access.

While driving a Jeep Cherokee, two hackers-Charlie Miller and Chris Valasek-remotely did everything from blasting cold air through the vehicle’s vents, blaring hip-hop through the speakers, spraying windshield wiper fluid and even appearing on the dashboard display system, before taking over the steering and leaving the SUV stranded on the side of the highway. All owners of those vehicles should have the software updated. “It seems like our attacks don’t work anymore”, he says, a little uncertainly. Cars lined up behind my bumper before passing me, honking.

Auto hacks aren’t a new thing, as the guys from Motherboard explain how you can do it. However, when half a million cars are in danger of being hacked and people’s lives are put in danger, with million others that could share similar weaknesses, it’s probably time to consider cars some sort of computers too and make sure they are kept safe not only from accidents but from now on hackers as well.