US-CERT Issues Alert for Fiat Chrysler Automobiles Software Vulnerability

A vulnerability affecting the Uconnect software in Fiat Chrysler Automobiles (FCA) that may have allowed an unauthorized user to take remote control of an affected vehicle requires access to Sprint’s cellular network, as Sprint connects FCA vehicles to the Internet, a U.S. Cyber Emergency Readiness Team (U.S.-CERT) alert said Monday. Sprint blocked the port used for attacks, it said, and FCA and the National Transportation Safety Administration initiated a safety recall for all potentially affected Chrysler, Dodge, Jeep and Ram models, the alert said. Uconnect users are encouraged to review the recall announcement and apply the software update, it said.