In most people’s minds, the word “cybersecurity” probably conjures images of cloud security, computers, and eCommerce. While it may not be obvious unless you think about it, your car, also, maybe vulnerable to cyber-attacks. There is a price to pay for modernization. Since the automotive industry added Bluetooth and internet services to new vehicles, our modes of transport have been exposed to new threats due to the technologies they use. When it comes to cybersecurity, in this case, it could literally be a matter of life or death.

The need for automotive cybersecurity has thankfully, in recent years, made headlines for reasons other than criminal activity. When Lennert Wouters, a security researcher at KU Leuven, hacked Tesla’s Model X via the Bluetooth feature within just 90 seconds, it sparked conversations around the globe about the need to address the security of our vehicles.

While most Bluetooth applications use code signing for their firmware updates, the Bluetooth application used by Tesla Model X does not. The purpose of code signing is to distinguish between safe interactions and unsafe ones through the use of unique signatures. This allows devices to verify the authenticity of firmware downloads before accepting the data transfer. When devices, such as the Tesla Model X keys, do not operate with code signing, the authenticity of the interaction cannot be verified, leaving them vulnerable to cyber-attacks. Tesla is not the only car brand where user safety can be compromised.

When it comes to a breach of automotive cybersecurity, vehicle theft is not the worst-case scenario. Once the digital operations of a vehicle have been compromised, hackers could bug the car interior or even tamper with the breaks. The risk of material loss is not the only thing you should think about when considering your car’s cybersecurity.

While the prospect of vehicle theft is of concern to many motorists, if hackers take control of your car’s manual abilities it is a whole different ball game. Self-driving cars are soon to become a reality, and so the risks need to be weighed against the reward. If a hacker compromises the Bluetooth connection of a manual car, then, without doubt, there are dangers, but imagine the risks of a network-reliant, self-driving car.

Charlie Miller, a hacker who was employed by Uber to work on their cybersecurity issues, is a major advocate for this issue. In an interview with Wired, Miller stated “Autonomous vehicles are at the apex of all the terrible things that can go wrong.”

Miller and Chris Valasek made headlines in 2017 when the pair hacked a Jeep Cherokee from a remote location via its internet connection, bringing it to a halt. This demonstrated to the world the dangers our vehicles are left open to when cybersecurity issues are not addressed. If used by terrorist organizations, for example, a breach of this level could lead to absolute mayhem.

When it comes to hacking manually-controlled vehicles as opposed to self-driving cars, the hacker cannot directly access its motor functions. Other operations and features have to therefore be triggered in order to remotely control the car. In order to activate a car’s brakes, for example, you could use the car’s anti-collision systems – or to influence a car’s speed, the cruise control settings would need to be manipulated. In the case of a self-driving car, even more, controls could be accessed.

Due to a number of high-profile hacking demonstrations of self-driving cars and key fobs, the automotive cybersecurity industry is rapidly expanding. Predictions indicate that the automotive cybersecurity market could be as big as $7 billion by 2027, due to the vulnerabilities that have been created by push-engine starts and internet-friendly functions.

The issue of automotive cybersecurity has also caused delays in the production of self-driving car projects, with BMW announcing in June 2020 that its target of selling level-4 self-driving cars by 2024 will not be reached.

Now for the big question: how can you avoid having your car hacked? Unlike with computers, the solution to this problem starts with the manufacturers – as a consumer there are limited options when it comes to doing your part to secure your vehicle. You can, however, store your key forms in a metallic box, as a signal-blocking container to prevent hackers from intercepting the connection between the keys and the car.

The automotive cybersecurity industry is on the rise for good reason and is the price that must be paid for technological advancement. As vehicles are made more technologically dependent, a plethora of hardware and software weaknesses are emerging, making them vulnerable to exploitation. For self-driving cars to be safe on our roads, the ingenuity and talents of engineers and cybersecurity experts alike will need to be employed.

It doesn’t take much more than one high-profile attack, like Wouters’ Tesla Hack, to launch new fields in cybersecurity. The best way to stay ahead of the curve and ensure that your company and its assets are fully protected is to employ industry experts like Advanced German Technology (AGT) to help you minimize and eliminate all possible weaknesses. At AGT, our highly skilled team works together with you to create bespoke security solutions that are tailored to your unique needs. Whether it is in addressing physical weaknesses or cloud vulnerabilities, AGT will shore up your cybersecurity defenses in every aspect. If you would like to upgrade your cybersecurity systems so that you have 360-degree security, contact us today.