Theme news

Latest news: cybersecurity in the auto industry

Credit: Bert van Dijk/Getty images.

Powered by

21 March 2023

Ferrari in cyber-attack incident

Ferrari has announced that Ferrari S.p.A., its wholly-owned Italian subsidiary, was recently contacted by a threat actor with a ‘ransom demand related to certain client contact details’.

In a statement, the luxury sports brand said it “immediately started an investigation in collaboration with a leading global third-party cybersecurity firm. In addition, we informed the relevant authorities and are confident they will investigate to the full extent of the law.”

The statement also said that as a matter of policy, “Ferrari will not be held to ransom as paying such demands funds criminal activity and enables threat actors to perpetuate their attacks.”

The statement added: “Instead, we believed the best course of action was to inform our clients and thus we have notified our customers of the potential data exposure and the nature of the incident.

“Ferrari takes the confidentiality of our clients very seriously and understands the significance of this incident. We have worked with third party experts to further reinforce our systems and are confident in their resilience. We can also confirm the breach has had no impact on the operational functions of our company.”

22 May 2023

Thales strengthens its position in automotive cybersecurity with a new certification

There is a clear growing demand for increased cybersecurity in the automotive industry. The United Nations Economic Commission for Europe (UNECE) responded by issuing a new regulation (UN Regulation No. 155) for vehicle Cyber Security Management System. This covers risk and security assessment, threat detection, and vulnerability monitoring over the entire vehicle lifecycle. In consequence, the automotive industry is implementing a mandated cybersecurity standard (ISO/SAE 21434) that applies not only to car manufacturers, but also to all vehicle cybersecurity suppliers such as Thales.

Thales says the ISO certification ensures it offers solutions with the highest level of security for car makers, integrators, and by extension users, and this starting from the vehicle’s development. It outlines the many procedures that should be followed to secure road vehicle cybersecurity. As a result, it is claimed this certification demonstrates that the complete process of developing Thales cyber solutions has been evaluated and certified. Identifying the vehicle's cybersecurity needs, designing and implementing cybersecurity measures, and continuously monitoring and updating the cybersecurity system are all part of the proven expertise, Thales says.

By default, Thales' 'security-by-design' approach is applied to all its onboard solutions and services designed, built, and implemented in cars. This comprises embedded secure elements, credentials management and storage, authentication systems, firmware update and much more. It establishes strict vulnerability monitoring and risk assessment for a secure future-proof maintenance.

Furthermore, this certification reinforces the trust that Thales provides in the data management throughout the connected vehicle's lifecycle. This is crucial because car makers must provide remote application and embedded device upgrading, patching, and improvement in connected vehicles. This data protection capability protects vehicles from cyberattacks while also increasing customer trust in the +300 million connected cars expected by 2027.

13 June 2023

VicOne collaboration with NXP and Inventec for cybersecurity solution for SDVs

VicOne, an automotive cybersecurity specialist, has announced a collaboration with NXP Semiconductors and Inventec that it says has led to an integrated, real-time cybersecurity solution for emerging software-defined vehicles (SDVs).

Powered by NXP's S32G vehicle network processor, Inventec's vehicle Central Gateway (CGW) is integrated with VicOne's cybersecurity software solutions. The built-in security delivers a turnkey solution that improves overall system compatibility and performance for automotive original equipment manufacturers (OEMs) and their suppliers, to promote scalability and streamline go-to-market activities. Plus, the integration aligns strongly with the automotive industry’s emerging compliance requirements, such as the ISO/SAE 21434 standard for cybersecurity engineering.

By combining VicOne's automotive cybersecurity solutions with Inventec's Central Gateway based on NXP's S32G vehicle network processor, the end-to-end solution delivers crucial capabilities for combatting constantly evolving cyber threats:

  • Real-time deep-packet inspection (DPI) and detection of malicious traffic in vehicle networks 
  • Analysis with comprehensive visibility for identifying threats and proactively searching for potential risks 
  • Response via unique “virtual patching” for protection without code changes or firmware updates 

“The automakers and suppliers who rapidly evolve software can claim decisive competitive advantages, but the complex and interconnected nature of today’s SDVs raises the importance of cybersecurity considerations,” said Edward Tsai, vice president of strategic partnership, VicOne. “The integrated solution resulting from our partnership with NXP and Inventec enables the automotive industry to more simply and seamlessly implement robust capabilities from respected, established solutions providers and future-proof for emerging risks.”

"Collaboration between companies to offer solutions leveraging complementary expertise and technologies is crucial to help accelerate the software-defined vehicle development,” said Brian Carlson, global marketing director for vehicle control and networking solutions at NXP. “The Inventec Central Gateway leveraging the NXP S32G processor’s powerful compute, networking and security capabilities, and integrated with VicOne’s dynamic security software, offers an attractive solution to address ever-evolving, vehicle cybersecurity threats.”

Go to article: Home | Cyber risk is higher than everGo to article: ContentsGo to article: ForewordGo to article: The state of cybersecurity in 2023Go to article: The history of cybersecurityGo to article: PharmaGo to article: The impact of cybersecurity on the pharmaceutical industryGo to article: Case studies: cybersecurity in the pharmaceutical industryGo to article: Latest news: cybersecurity in pharma Go to article: Q&A with GlobalData thematic analystGo to article: Key cybersecurity trends in PharmaGo to article: Cybersecurity in pharma: securing the future Go to article: Deal activity related to cybersecurity in the pharmaceutical industry since 2018Go to article: Cybersecurity hiring trends in the global pharmaceutical industry since 2020Go to article: Cybersecurity patent applications in the global pharma industry since 2020Go to article: MedicalGo to article: Mentions of cybersecurity in pharma industry company filings since 2020 Go to article: The impact of cybersecurity on the medical device industry Go to article: Case studies: cybersecurity in the medical device industryGo to article: Latest news: cybersecurity in medical devicesGo to article: Q&A with GlobalData thematic analystGo to article: Cybersecurity: building resilience into the medical device marketGo to article: Cybersecurity innovation: leading companies in patient identification and accessGo to article: Deal activity related to cybersecurity in the medical devices industry since 201Go to article: Cybersecurity hiring trends in the medical devices industry since 2020Go to article: Cybersecurity patent applications in the global medical devices industry since 2Go to article: Mentions of cybersecurity in medical device industry company filings since 2020Go to article: GlobalData Thematic IntelligenceGo to article: MiningGo to article: The impact of cybersecurity on the mining industryGo to article: Case studies: cybersecurity in the mining industryGo to article: Q&A with GlobalData thematic analystGo to article: Lessons learned from Rio Tinto’s massive cyber-attackGo to article: Leading mining companies in the cybersecurity themeGo to article: Deal activity related to cybersecurity in the mining industry since 2018Go to article: Cybersecurity hiring trends in the global mining industry since 2020Go to article: Cybersecurity patent applications in the global mining industry since 2020Go to article: Mentions of cybersecurity in mining industry company filings since 2020Go to article: Steuler KCH AustraliaGo to article: Steuler KCH Australia Company InsightGo to article: PowerGo to article: The impact of cybersecurity on the power industryGo to article: Case studies: cybersecurity in the power industryGo to article: Zero-trust cybersecurity – decentralised risk, everyone’s consequenceGo to article: Cybersecurity innovation: Leading companies in power distribution system modellingGo to article: Leading power companies in the cybersecurity themeGo to article: Deal activity related to cybersecurity in the power industry since 2018Go to article: Cybersecurity hiring trends in the power industry since 2020Go to article: Cybersecurity patent applications in the global power industry since 2020Go to article: Mentions of cybersecurity in power industry company filings since 2020Go to article: Oil & GasGo to article: The impact of cybersecurity on the oil and gas industryGo to article: Case studies: cybersecurity in the oil and gas industryGo to article: Latest news: cybersecurity in oil and gasGo to article: Q&A with GlobalData thematic analyst    Go to article: Risks, rackets and ransoms: the dark side of cybersecurity threats Go to article: Cybersecurity innovation: leading companies in VPN tunnelling for the oil and gaGo to article: Leading oil and gas companies in the cybersecurity theme Go to article: Deal activity related to cybersecurity in the oil and gas industry since 2018 Go to article: Cybersecurity hiring trends in the global oil and gas industry since 2020 Go to article: Cybersecurity patent applications in the global oil and gas industry since 2020 Go to article: Mentions of cybersecurity in oil and gas industry company filings since 2020 Go to article: DefenceGo to article: The impact of cybersecurity on the defence industryGo to article: Case studies: cybersecurity in the defence industry Go to article: Military cyber security considerations moving to the foreGo to article: Q&A with GlobalData thematic analystGo to article: Maximising cyber capabilities: US DoD's 2023 cyber strategy takes shape Go to article: Leading defence companies in the cybersecurity theme Go to article: Deal activity related to cybersecurity in the aerospace & defence industry since 2018Go to article: Cybersecurity hiring trends in the aerospace & defence industry since 2020 Go to article: Cybersecurity patent applications in the global aerospace & defence industry since 2020 Go to article: Mentions of cybersecurity in aerospace & defence industry company filings since Go to article: Sponsorship opportunitiesGo to article: PackagingGo to article: The impact of cybersecurity on the packaging industryGo to article: Case studies: cybersecurity in the packaging industryGo to article: Latest news: cybersecurity in packaging Go to article: Q&A with GlobalData thematic analystGo to article: Safeguarding the packaging sector against cyber threatsGo to article: Avery Dennison takes leading role in cybersecurity Go to article: Deal activity related to cybersecurity in the packaging industry since 2018Go to article: Cybersecurity hiring trends in the packaging industry since 2020Go to article: Cybersecurity patent applications in the global packaging industry since 2020 Go to article: Mentions of cybersecurity in packaging industry company filings since 2020 Go to article: AutoGo to article: The impact of cybersecurity on the auto industryGo to article: Case studies: cybersecurity in the auto industryGo to article: Latest news: cybersecurity in the auto industryGo to article: Problematic paywalls, dissatisfied customers and rising cyber-threats Go to article: Cybersecurity innovation: leading companies in vehicle anti-theft systemsGo to article: Deal activity related to cybersecurity in the automotive industry since 2018Go to article: Cybersecurity hiring trends in the automotive industry since 2020Go to article: Cybersecurity patent applications in the global automotive industry since 2020Go to article: Mentions of cybersecurity in automotive industry company filings since 2020Go to article: FoodGo to article: The impact of cybersecurity on the consumer goods industryGo to article: Case studies: cybersecurity in the consumer goods industryGo to article: Latest news: cybersecurity in foodGo to article: Leading consumer goods companies in the cybersecurity themeGo to article: Cybersecurity hiring trends in the food industry since 2020 Go to article: Cybersecurity patent applications in the global food industry since 2020 Go to article: Mentions of cybersecurity in food industry company filings since 2020Go to article: ApparelGo to article: The impact of cybersecurity on the apparel industryGo to article: Case studies: cybersecurity in the apparel industry Go to article: Latest News: cybersecurity in apparel Go to article: Fashion sector digitisation demands greater cybersecurity Go to article: Cybersecurity hiring trends in the apparel industry since 2020 Go to article: Cybersecurity patent applications in the global apparel industry since 2020Go to article: Mentions of cybersecurity in apparel industry company filings since 2020Go to article: Next issue