OpenSSL, a widely used open-source cryptography library, has released OpenSSL version 3.0.7 to address CVE-2022-3786 and CVE-2022-3602, which affect versions 3.0.0 to 3.0.6.
An on-board intrusion detection and prevention system (IDPS) protects a connected vehicle by enabling it to detect electronic control unit (ECU)-level attacks and then respond to each in real-time.
Uber links last week’s multifactor authentication (MFA) fatigue attack to the hacker group Lapsus$.
The automotive supply chain faces many hurdles ahead, from complying with new regulations to dealing with vulnerabilities and preparing for threats on the horizon. How can it equip itself to handle these challenges?
Log4Shell was a critical flaw found in Apache Log4, a widely used Java-based logging library. In this entry, we discuss how this severe vulnerability could impact connected cars and how to better prepare for similar imminent threats.
August saw the release of several studies on the flaws in different connected vehicle components, which highlighted the trade-off between convenience and security.
The automotive industry is at a decisive moment. Growth is in its future, but so are potential risks. What kind of cybersecurity framework do manufacturers need to support them in navigating the path ahead?
Taiwan’s first self-driving bus hit the road in 2020. Although it was only a trial run, it showed tremendous promise and highlighted potential threats for autonomous vehicle technologies in the not-so-distant future.
The enforcement of the UN Regulation No. R155 (UN R155) in July 2022 entails cybersecurity requirements that are binding in all UNECE member countries. To comply with and stay updated on the latest security requirements, OEMs and Tier 1 suppliers must rely on comprehensive cybersecurity solutions.
CRN® names VicOne as one of the top 11 coolest cybersecurity tools and products of 2022, highlighting the growing market for cybersecurity in the world of connected cars..
A design vulnerability in a network protocol connecting in-vehicle systems and equipment could lead to fatal situations for car users. We delve into the CAN standard and possible mitigation methods in the face of vulnerability exploitation.
As with all internet-enabled technologies, Intelligent Transportation Systems (ITSs) are open to the possibility of cyberattacks. From denying data flow to service disruption, a range of potential attacks could be launched on the ITS infrastructure, making ITS cybersecurity a nonnegotiable component of today’s connected world.
How can automotive security prevent and mitigate the effects of data breaches? We revisit data breach cases in the automotive industry to gather insights.
