Blog

Ransomware is disrupting the automotive industry, from IT and OT systems to emerging V2X technologies. We discuss the repercussions, key vulnerabilities, and strategies to safeguard against future attacks.

The proliferation of APIs in software-defined vehicles (SDVs) has significantly expanded the attack surface, posing serious security risks to the entire automotive ecosystem. In this article, we provide insights into the evolving threat landscape of automotive APIs, tackling vulnerabilities associated with SDVs and recommending a systematic approach for effectively mitigating the risks.

A large-scale outage resulting from a single content update recently affected computers across multiple industries, including financial institutions, hospitals, and airlines. This incident highlights the challenges faced by organizations and the crucial need for enhanced system resilience in our increasingly interconnected world.

A software provider for automotive dealerships recently fell victim to a ransomware attack, causing widespread outages and crippling operations for thousands of car dealers. We examine the far-reaching implications of this incident on the automotive supply chain, outline critical lessons learned, and provide strategic security recommendations for automotive stakeholders.

In this second part of our series on vehicle entry system technology, we focus on its most recent iteration, the ultra-wideband (UWB) protocol. We cover its advantages, the potential vulnerabilities it carries, and the measures that will help secure its integration into vehicles.

VicOne has partnered with the Automotive Security Research Group (ASRG) to launch AutoVulnDB, an innovative database focused on automotive vulnerabilities. This initiative provides exceptional coverage of automotive threat intelligence, establishing VicOne as the industry leader in comprehensive vulnerability management.

In this first installment, we examine the history of automotive entry technology and explore notable types of security breaches such as replay attacks, rolling attacks, and relay attacks.

Apps play a significant role in enhancing the functionality and driving the evolution of software-defined vehicles (SDVs). However, their integration also introduces new risks, as we explore in this blog entry.

Rust, a memory-safe programming language, is gaining traction as it is designed to address memory-related vulnerabilities. We discuss its potential impact on automotive cybersecurity.

A VicOne researcher demonstrates how automotive security researchers can take advantage of Python and ChatGPT, especially in scripting proofs of concept of known attacks and exploring novel vulnerabilities in automotive systems.

In celebration of World Quantum Day on April 14, we discuss how quantum computing can further improve advanced driver assistance systems (ADASs) and the risks associated with this disruptive technology.

Open RAN is said to usher advances in V2X communications for connected vehicles. Researchers have taken a closer look at this technology to see where vulnerabilities might slip through amid its anticipated advantages.