Latest in Blackhat

Image credit:

Hurry up and patch your Chrysler against this wireless hack

65 Shares
Share
Tweet
Share
Save

Last week Chrysler quietly released a software update for its optional Uconnect in-car entertainment system. And while the official purpose was "to improve vehicle electronic security", Wired reports that the patch is really aimed at fixing a terrifying flaw in the system's security. One that could allow hackers to remotely shut down your vehicle at slow speeds or hijack its steering, brakes, and transmission.

The flaw, discovered by security researchers Charlie Miller and Chris Valasek, allows hackers to access the vehicle via a cellular connection. The pair has been working with Chrysler for the last nine months to patch the vulnerability and plans to release a portion of their work at next month's Black Hat conference for peer review.

If you happen to drive a late model Chrysler with the optional Uconnect feature, take a moment to manually update the software. To do so, simply go to the Uconnect website and enter your Vehicle Identification Number (VIN). Your VIN is listed on both a plate in the engine compartment and also in one the the vehicles door sills; it's 17 characters long, you can't miss it. If the site says your car is at risk, download the update to a USB drive and plug that drive into the Chrysler's onboard USB port. The update will automatically install and you'll no longer have to worry about having your car hacked with you still in it.

[Image Credit: Toronto Star via Getty Images]

From around the web

ear iconeye icontext file