Car cybersecurity firm expects consumers to emerge as hackers


Add vehicle owners to a potentially growing list cyber security threats to automakers in 2023.

According to executives at Israeli cybersecurity firm Upstream, early adopters of new digitized products offered by automakers are finding ways to circumvent premium features by manipulating their vehicles’ systems. you will find

Speaking at a cybersecurity webinar on Tuesday, the Upstream team said consumers could push back as automakers launch subscription-based services and features in new vehicles.

car manufacturers — BMW and Tesla to Volkswagen, Toyota When general motors — They offer monthly subscriptions for services like heated seats, global positioning systems, music streaming and remote keyless start with varying degrees of success.

Cybersecurity is a growing concern for the automotive industry. As vehicles become digital platforms, groups of so-called white hat hackers (researchers who find vulnerabilities and notify automakers and suppliers) are finding problems. Last year, security engineer Sam Curry hacked his Reviver, a digital license plate company that serves fleet customers. Curry said that all users of Reviver he got full “super admin access” to manage his account and vehicles. His team found ways to compromise customer and employee information for BMW, Rolls-Royce, Jaguar-Land Rover, Mercedes-Benz, Porsche, Ferrari and Ford.

Upstream expects automotive to be the focus this year, with black hat hackers exploiting vulnerabilities for nefarious reasons. According to Upstream, in 2022, black hat hackers turned most of their attention to compromising a car manufacturer’s telematics and application servers. This accounts for his 35% of automotive cybersecurity breaches.

Upstream counts 268 publicly reported automotive cyberattacks in 2022. This is up from 245 publicly reported incidents in 2021.

The number of attacks is steadily increasing. Upstream cited 230 incidents in 2020, 196 in 2019 and 79 in 2018.

From 2010 to 2022, the company recorded 1,173 publicly reported automotive-related cybersecurity attacks.


Leave a Reply

Your email address will not be published. Required fields are marked *