do you drive a Ram, Durango, or Jeep

Sgt. Schultz · 07-23-2015, 11:44 AM

It’s the latest in a series of revelations from the two hackers, Charlie Miller and Chris Valasek, that have spooked the automotive industry and even helped to inspire legislation; WIRED (www.wired.com) has learned that senators Ed Markey and Richard Blumenthal plan to introduce an automotive security bill today to set new digital security standards for cars and trucks, first sparked when Markey took note of Miller and Valasek’s work in 2013.

All of this is possible only because Chrysler, like practically all carmakers, is doing its best to turn the modern automobile into a smartphone. Uconnect, an Internet-connected computer feature in hundreds of thousands of Fiat Chrysler cars, SUVs, and trucks, controls the vehicle’s entertainment and navigation, enables phone calls, and even offers a Wi-Fi hot spot.

Jeep drivers can be HACKED to DEATH: All you need is the car's IP address â€¢ The Register
&
Hackers Remotely Kill a Jeep on the Highwayâ€”With Me in It | WIRED

However the update requires users to manually update their cars by visiting the manufacturer’s site, downloading a programme on to a flash drive and inserting it into the car’s USB socket. FCA dealers can update the car for owners, but the company is apparently unable to automatically update the cars over the internet.
Jeep owners urged to update their cars after hackers take remote control | Technology | The Guardian

**ependydad** · 07-23-2015, 01:52 PM

Interesting, I have a Ram with U-Connect, but we never activated the service. I just couldn't see the benefit of it being a hotspot when for similar money, I could make my phone a hotspot or buy a separate hotspot device which could be used from the camper when the truck was out sight-seeing.

Kevinc2011 · 07-24-2015, 03:49 AM

I thought that they had to get in through the HotSpot when I saw the report. The Vehicle WiFi does not make sense to me in this era of Smart Phones. It is much cheaper to have the service on your phone, rather on the vehicle. I have never activated that service on my truck or Grand Cherokee either.

mud yapster · 07-24-2015, 04:07 AM

I have a new 2015 Ram 3500 i don't use the uconnect either or the Sirus that's free. I use my smart phone and I use my iPod for music. I think turning a car or truck into a internet connection is crazy. They complain about people texting while driving and running over people from the distraction. What do they think turning a vehicle into a internet connection is going to do, the same distraction as texting.
We didn't even have phone or internet not long ago and we didn't miss much. Although I like technology it is annoying a lot of time but helpful at others. It's a catch 22 at times. It has helped the thieves for sure steal you thing and now to turn your vehicle off. They put this new technology out there but with no thought to security or your privacy. Best to leave it off now days a lot of time and just turn it on and use it then turn it right back off before your hacked. JMO I like technology but it's getting dangerous to us in so many ways.

**ependydad** · 07-24-2015, 12:18 PM

You can check here to see if your car is effected:
UconnectÂ® Software Update - Update your UconnectÂ® System

Mountndream · 07-24-2015, 12:29 PM

regardless if you use the Uconnect or not, you are affected and hackable.

With that said, i live in ST Louis where they Demo'd this and I am not worried

However, according to DW, i will be downloading the patch to a USB drive and applying the fix tonight

mike.t · 07-24-2015, 06:31 PM

Thanks Sgt. Have an appointment with the dealer Mon.

mike.t · 07-24-2015, 06:33 PM

yapster.Looks like that Palamino isn't to short on techy stuff.

kandl · 07-26-2015, 03:03 AM

1st gen Uconnect in the Dodge, which connects to phone via Bluetooth and offers voice control of same. It works well (hands free) and that's about all I need it to do. No screen with integrated GPS either. Didn't want it. I can buy a top end RoadMate and a Garmin for less than FCA will charge for a single map update to the integral system.

Sgt. Schultz · 07-26-2015, 07:43 AM

Some updates:

Crazy Chrysler security hole: USB stick fix incoming for 1.4 million cars â€¢ The Register
Details of the vulnerability [PDF] published alongside the recall notice suggest compromising the vehicles has proved easier than first thought.

From the above :
One group of Chrysler customers are going to be particularly peeved – the US police, which is one of the car company's biggest customers. Canny criminals would relish the chance of killing a pursuer's engine, so the boys in blue better get patching.

Report Receipt Date: JUL 23, 2015
NHTSA Campaign Number: 15V461000
Component(s): EQUIPMENT
Potential Number of Units Affected: 1,400,000

All Products Associated with this Recall

Vehicle MakeModelModel Year(s)

CHRYSLER2002015
CHRYSLER3002015
DODGECHALLENGER2015
DODGECHARGER2015
DODGEDURANGO2014-2015
DODGEVIPER2013-2015
JEEPCHEROKEE2014-2015
JEEPGRAND CHEROKEE2014-2015
RAM15002013-2015
RAM25002013-2015
RAM35002013-2015
RAM45002013-2015
RAM55002013-2015

Details

3 Associated Documents

Mountndream · 07-27-2015, 08:54 AM

Found out this weekend, this is only if you have the Uconnect 8.1 system... the uconnect 5.0 does not have the connectivity and therefore not affected

craignhouston · 07-28-2015, 09:53 PM

Quote:

Originally Posted by mike.t

Thanks Sgt. Have an appointment with the dealer Mon.

It is very easy to do yourself. Save yourself from sitting at the dealership all day. just follow the instructions. I did both my durango and ram 2500. Took about 15 minutes each.

mike.t · 07-28-2015, 10:36 PM

Thanks Mountain and craign. After trying to download this mess the/my 2015 and all others i assume do not have a security issue. But to confuse customers (me) there is a RADIO up date that you can download. The local dealer has no clue.

You may also like: