Chrysler Uconnect Security Flaw - Dorkiphus.net
Navigation » Dorkiphus.net > Miscellaneous Discussions > Miscellaneous Discussions » Chrysler Uconnect Security Flaw

Miscellaneous Discussions Off Topic (OT) items that really don't fit into any other Category

Reply
 
Thread Tools Display Modes
  #1  
Old 07-21-2015, 02:39 PM
joep's Avatar
joep joep is offline
 
Join Date: Jun 2008
Location: PW county Virginia
Posts: 2,555
joep
Default Chrysler Uconnect Security Flaw
If you own Chrysler vehicle (Jeep Cherokee) or anything with Uconnect please listen up... whitehat hackers have demonstrated remote control over these affected vehicles, and will present it at Black Hat security conference in Las Vegas next month. This is a working exploit which Chrysler is aware and fixing. If you get the service bulletin get it patched ASAP.

Couple of links to same news:
http://www.wired.com/2015/07/hackers...-jeep-highway/
http://gizmodo.com/hackers-have-the-...lio-1719233440

Folks, this is serious. If you have one of the affected vehicles, take it in ASAP. I work in IT security. My 2¢ is avoid this feature, and any wireless service for at least several years if you can opt out of getting them. Some engineers/marketers insist on repeating the mistakes of the past. This type of issue has been theoretical for years now, and possible via the ODBCII connection (which is silly of course), but you can bet black hat hackers on working on the same thing for more than Chrysler.

The arms race for vehicle hacking is only just beginning.

idk if this link can help you, but here it is:
http://www.driveuconnect.com/software-update/
__________________
Ken
'03 - boxster - Joy Toy
-rolling convertible action
-de-ambered
-Boxster Brey-Krause Roll Bar
'05 - 955s Gold - My Other / On Road / Off Road
-coolant pipe by pass 08/11
-heart & short soul block replaced @50k 01/12
-cardan shafted & replaced @125k 09/16

Quote:
Originally Posted by BlackTalon View Post
I could feel my self-esteem rising, even while realizing how incorrect I was
Quote:
Originally Posted by Rick V View Post
I think I like the purple, it placates my lesbian side.
Reply With Quote
  #2  
Old 07-21-2015, 09:09 PM
smdubovsky's Avatar
smdubovsky smdubovsky is offline
 
Join Date: Mar 2004
Location: Silver Spring, MD
Posts: 5,284
smdubovsky has three HoF threadssmdubovsky has three HoF threadssmdubovsky has three HoF threads
Default
Thats awesome

Though I have a 2015 ford w/ similar capabilities that I never enabled. I always wonder if its still vulnerable to this type of stuff. Off likely isn't really OFF.
__________________
Stephen
www.salazar-racing.com
1970 914/6 - 3.0L GT
1983 911SC - 3.32L IROC
 1984 930 - 3.6L

dirt bikes (some gas, some electric), Sherco trials bike
Sold: 2001 Boxster (hers), 2003 996tt x50 , SpecE30, 1996 E36M3 GTS2 racecar, 2015 Mustang GT, 2008 S2R1000
Reply With Quote
  #3  
Old 07-22-2015, 08:57 PM
Dandelion's Avatar
Dandelion Dandelion is offline
 
Join Date: Apr 2011
Location: Herndon/Reston, VA
Posts: 1,961
Dandelion
Default
Just patched my Jeep. At least there's a way for owners to download and update the entertainment system easily.

ed
__________________
ed

2016 GT4
2012 Cayman R
2005 Lotus Elise
1994 RX-7 R2
Reply With Quote
Reply

« Previous Thread | Next Thread »

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump