Hackers Remotely Kill a Jeep on the Highway
#17
Lexus Fanatic
iTrader: (20)
fwiw, when i tried the app to lock or start the car (don't remember which) it was pathetic - took about 5 minutes between pressing the app and the action occurring. go sprint 3G network.
#18
Lexus Fanatic
Just a pure guess on my part (not necessarily fact), but I wonder if, when remote-starting the engine, at least part of that 5 minutes is security-related...to make sure that it is actually YOU that wants to make the remote start, and not some potential car thief or carjacker just waiting for a chance to jump into it and drive off.
#20
Lexus Fanatic
iTrader: (20)
Just a pure guess on my part (not necessarily fact), but I wonder if, when remote-starting the engine, at least part of that 5 minutes is security-related...to make sure that it is actually YOU that wants to make the remote start, and not some potential car thief or carjacker just waiting for a chance to jump into it and drive off.
#21
Lexus Fanatic
iTrader: (20)
#22
Driver School Candidate
Join Date: May 2015
Location: Lone Star State
Posts: 24
Likes: 0
Received 0 Likes
on
0 Posts
#23
Super Moderator
Right on the heels of the record $105 Million consent order levied against FCA for failing to recall vehicles with safety defects, comes the revelation that they were notified of the Uconnect vulnerability in January 2014, a full 18 months before the story broke that actually triggered the recall.
And naturally, this means that a Class action lawsuit is in the works.
Think they'll learn their lesson this time? Me either.
Originally Posted by Bloomberg Business
The company’s description of events leading up to the July recall says it knew in January 2014 that radio communications ports had been left open unintentionally, allowing them to “listen to and accept commands from unauthenticated sources.” It doesn’t mention the possibility that such access might lead to a hacker taking control of steering, braking or other functions that could cause a car to crash.
Fiat Chrysler said in a statement it advised NHTSA of the security issue “in a reasonable and timely manner.” The company said it’s “conducting a remedial campaign as a safety recall in the interest of protecting its customers” out of “an abundance of caution.”
The company said it contacted NHTSA after the hackers informed Fiat Chrysler of their plan to publicize the security flaw at Black Hat, including information to facilitate unauthorized and unlawful access to the automaker’s vehicles.
Fiat Chrysler said in a statement it advised NHTSA of the security issue “in a reasonable and timely manner.” The company said it’s “conducting a remedial campaign as a safety recall in the interest of protecting its customers” out of “an abundance of caution.”
The company said it contacted NHTSA after the hackers informed Fiat Chrysler of their plan to publicize the security flaw at Black Hat, including information to facilitate unauthorized and unlawful access to the automaker’s vehicles.
Originally Posted by Bloomberg Business
Documents Fiat Chrysler filed with NHTSA note that it didn’t consider the software issue, identified by a third party in January 2014, to be a safety defect under U.S. law. Under the Motor Vehicle Safety Act, which governs how and when recalls are conducted, automakers must notify NHTSA within five days of discovering a flaw that presents an unreasonable risk to public safety.
Think they'll learn their lesson this time? Me either.
#24
Lexus Fanatic
iTrader: (20)
corporations don't take security seriously.
Thread
Thread Starter
Forum
Replies
Last Post
mikesblkgs
GS - 2nd Gen (1998-2005)
7
03-07-09 12:37 AM
Redwood
ES - 1st to 4th Gen (1990-2006)
2
05-24-03 09:57 PM
wwest
Maintenance
7
09-12-02 04:52 PM