The report - Under the Hood: Cybercriminals Exploit Automotive Industry's Software Features - covers the vulnerabilities that give hackers an entry point into a manufacturer's system; the complex cybersecurity challenges facing automakers; and the advanced tools, tactics, and procedures cybercriminals use to infiltrate automobile infrastructure.
"The automotive industry faces some unique challenges," says Etay Maor, Chief Security Officer, IntSights. "Aside from the need to protect their IT and OT from attacks seen in other industries, they also have to identify issues and protect the vehicles themselves. With more onboard computers, more connectivity and more personal devices connecting - the attack surface is constantly growing and the attackers have taken notice."
"A lack of adequate security controls and knowledge of threat vectors enables attackers to take advantage of easily acquired tools on the dark web to reap financial gain," says Maor. "Automakers need to have a constant pulse on dark web chatter, points of known exposure, and data for sale to mitigate risk."
According to the report, here are the top vehicle attack vectors:
- Remote Keyless Systems
- Tire Pressure Monitoring Systems
- Software and Infotainment Applications
- GPS Spoofing
- Cellular Attacks
The report can be downloaded at the company's site.