Kaspersky has now introduced its tailored threat intelligence (TI) reporting for organizations working in the automotive industry, which was previously available for a selected range of customers. The company’s TI reports provide car manufacturers with in-depth analysis of industry-specific security threats and identify information that could be utilized by malefactors to develop attacks on vehicles, connected vehicle infrastructure, and other vehicle-related systems.
Numerous cases show the interest in automotive security. From independent researchers and enthusiasts to cybercriminals, the focus has moved on from the security of embedded devices and more attention is now being paid to the security of vehicles. This has resulted in a growing number of attack techniques and the introduction of new regulatory requirements that manufacturers must follow in order to stay protected against them.
Kaspersky’s Automotive TI service helps organizations — from vehicle manufacturers to suppliers – stay updated on relevant security issues that may influence the automotive industry, and allows them to take appropriate remediation steps in a timely manner. This tailored service is designed to identify existing and emerging automotive-related threats against in-vehicle components as well as connected vehicle infrastructure.
“With the growing number of technologies being used in modern vehicles, it is important to not only comply with the upcoming regulatory requirements but to also have information about all possible threats — from electronic control unit vulnerabilities to attacks on vehicle-to-everything components. By providing relevant threat intelligence, we do our part in helping car manufacturers manage these concerns,” said Sergey Zorin, head of Kaspersky Transportation System Security at Kaspersky.
Each report includes an overview and analysis of technology trends related to cyberattacks in the automotive industry, such as cyber-incidents, recent security studies, conferences, talks, community forums, as well as information on potential attack vectors on the customer’s vehicle backend and services infrastructure. The main service deliverables are the report with a high-level executive summary, threat descriptions, and recommendations, as well as notifications on high-risk activities and vulnerabilities tailored for the OEM.
If the TI report finds a threat that needs to be resolved urgently, customers are notified immediately.