Monday, July 27, 2015

The Jeep hack will suppose a fine of $105 million for Fiat Chrysler

This weekend the company Fiat Chrysler has discovered how expensive it can be ignoring researchers that seven months ago warned them about serious security flaws in its UConnect network. Last week, these researchers and a journalist from "Wired" showed to the world how it was possible to leave without brakes and remotely shut down a Jeep Cherokee in a motorway. Today we live the aftermath of this show, which has shaken the world and occupies our Monday report. 

The responsible authority of safety in cars in USA fined with $ 105 million the company Fiat Chrysler Automobiles due serious security flaws which involve millions of its vehicles. Specifically, most of the models created between 2013 and 2015: Jeep Grand Cherokee, Cherokee, Dodge Durango, Dodge Charger, Dodge Challenger and Dodge Viper. The responsible organization of the traffic safety in the national highways has also reprimanded the company, finally reaching an agreement with it.

One USB to heal them all

The agreement consists of Chrysler offering the owners of 1.5 million of its vehicles the option of selling them back to the manufacturer. Besides, if necessary, it will be submitted to an independent assessment for the next three years. The way devised by Chrysler for securing vulnerable autos has received a lot of critics: they will send USBs to their owners and ask to plug them in the cars to upgrade security. Because many people do not know to do this in their computers, experts believe it would have been better to invite customers to the nearest specialist.

Toyota and Ford too

The rain is pouring down strongly over Chrysler so it is good to remember that this is not the first car manufacturer who discovered serious security holes. The first failures were focused on electronic locks and affected the vast majority of brands. But as well as cars became more electric and began to use networks allowing its remote management, it got a lot more fun for hackers like Charlie Miller and Chris Valasek, the Chrysler hack authors. In previous years they had shown that they could drive a Toyota Prius from a computer or leave without brakes a Ford Escape. So... who can say that's bug free.

Smart but insecure

We do not leave things connected to the Internet by manufacturers with no idea of security. We finish talking about the smart watches and a study of HP Fortify which ensures that 100% of them are highly insecure: insufficient user authentication, lack of encryption, unsafe interfaces, insecure firmware and privacy issues are the big topics where these gadgets fail.

We started a new week in which we realized that more readers and newsmakers start holidays. If you are among those who read us, have a few wonderful days!


Post a Comment