Blog

In our annual automotive cybersecurity report, we review the past year to see how far the industry has come in its compliance journey, what challenges it has been facing, and where it can expect to find itself amid the threat landscape ahead.

How much does your car know about you? Our study highlights the need to look into how we can protect the large amount of data that cars now produce and use — before threats to privacy and security become serious problems.

Researchers from the Technical University of Berlin recently unveiled a hardware-based attack designed to jailbreak Tesla’s AMD-based in-vehicle infotainment (IVI) system. In this blog entry, we delve into the methodology of the attack and explore its implications for automotive cybersecurity.

Malicious actors could exploit vulnerabilities in the charging infrastructure used by electric vehicles (EVs) to carry out cyberattacks on EV charging systems, which could lead to reputational damage and service outages. As EVs become more popular as a sustainable transportation alternative, the need for secure EV charging systems becomes of greater importance.

This second installment in a two-part series of articles focuses on how organizations can optimize the advantages of implementing a software bill of materials (SBOM) to bolster software security in connected cars.

This article is the first installment of a two-part series that discusses how important implementing a software bill of materials (SBOM) is for connected car stakeholders aiming to strengthen their cybersecurity stance.

A critical vulnerability affecting AMD Zen 2 CPUs, Zenbleed could allow a register to not be written to zero correctly, potentially leading to the leakage of data, passwords, and other sensitive information. Its successful exploitation could have repercussions for the automotive industry.

We discuss our research findings from the laboratory we set up to learn more about automotive Ethernet Time-Sensitive Networking (TSN) standards, focused on 802.1AS and 802.1Qbv, two IEEE standards found in practical applications.

Omdia recently released a report mentioning how VicOne provides OEMs with a detection and response platform for connected cars that leverages the MITRE ATT&CK® framework to bolster the capabilities of VSOCs.

Mercedes-Benz has announced that it is bringing ChatGPT into its infotainment system to transform the in-car experience. What are the potential cybersecurity risks of this integration?

We reverse-engineered a malicious update file to understand how such a file can be used by threat actors to exploit a known vulnerability in IVI systems.

We tested GPT models to determine their accuracy in analyzing cybersecurity incidents. As it was largely a hit-or-miss scenario, we at VicOne propose combining a popular GPT model with our automotive threat intelligence LLM to obtain results that are more reliable and accurate.