Skip to content

Number of automotive-related cybersecurity vulnerabilities surge by 320% in 2021

Number of automotive-related cybersecurity vulnerabilities surge by 320% in 2021

With demand for automotive cybersecurity solutions growing, publicly disclosed security flaws from the Common Vulnerabilities and Exposures (CVEs) database shows an increase in related risks.

Last year, the automotive-related cybersecurity vulnerabilities increased a record 321% to 139 from 2020’s figure of 33, according to a new report published by Upstream, a cybersecurity and data management platform for connected vehicles. 

In 2019, the reported vulnerabilities stood at 24, with the report noting that incidents were segmented in both physical access and remote access. For physical attackers, malicious actors required physical access to hit the target, while remote access needed the hackers to attack from a short or long distance. 

Number of automotive associated CVE reports between in 2019-2021. Source: Upstream

Servers the most common attack vector

The report acknowledges that 2021 recorded a surge in sophisticated attacks with hackers exploiting various avenues. 

Servers emerged as the most common attack vector at 40.1%, followed by crucial fob at 26.3%. Other attack vectors include mobile apps (7.3%), Wifi (2.9%), and in-vehicle networks (2.7%). 

Common attack vectors for connected vehicles 2010-2021. Source: Upstream.

The attacks also impacted some government infrastructure like New York City’s subway and bus transit system that was targeted in a ransomware attack. Although the attack did not involve financial demands, it highlighted the sophisticated attacks facing major U.S. infrastructure. 

In general, automotive security concerns are still emerging with the increased incorporation of wireless technologies in vehicles. Consequently, it has resulted in severe security concerns. 

According to Upstream, solutions that offer the most convenience to consumers are the ones easily exploited by hackers.

Electric vehicles most susceptible  

The study noted that electric vehicles are the most vulnerable to attacks, considering the growing market. For EVs, they are also facing risks posed within the electric vehicles charging station. Interestingly, the shortcomings can potentially affect different EVCS components. 

The report comes after a new expose showed that Tesla, a leading EV manufacturer had its vehicles remotely accessed due to security bugs found in an open-source logging tool. 

Although no high-profile hacks have been reported, it raises questions on the technologies being used by the vehicles and how secure consumers are. 

The report recommends that cybersecurity firms address all vulnerabilities, even those with low and medium scores. 

Best Crypto Exchange for Intermediate Traders and Investors

  • Invest in cryptocurrencies and 3,000+ other assets including stocks and precious metals.

  • 0% commission on stocks - buy in bulk or just a fraction from as little as $10. Other fees apply. For more information, visit etoro.com/trading/fees.

  • Copy top-performing traders in real time, automatically.

  • eToro USA is registered with FINRA for securities trading.

30+ million Users
Securities trading offered by eToro USA Securities, Inc. (“the BD”), member of FINRA and SIPC. Cryptocurrency offered by eToro USA LLC (“the MSB”) (NMLS: 1769299) and is not FDIC or SIPC insured. Investing involves risk, and content is provided for educational purposes only, does not imply a recommendation, and is not a guarantee of future performance. Finbold.com is not an affiliate and may be compensated if you access certain products or services offered by the MSB and/or the BD

Read Next:

Finance Digest

By subscribing you agree with Finbold T&C’s & Privacy Policy

Related posts

Sign Up

or

By submitting my information, I agree to the Privacy Policy and Terms of Service.

Already have an account? Sign In

Services

Disclaimer: The information on this website is for general informational and educational purposes only and does not constitute financial, legal, tax, or investment advice. This site does not make any financial promotions, and all content is strictly informational. By using this site, you agree to our full disclaimer and terms of use. For more information, please read our complete Global Disclaimer.