A recent study titled “Automotive Cyber Security,” conducted by Germany’s Center of Automotive Management (CAM) in collaboration with Cisco Systems, sheds light on the imminent threats facing the industry. According to CAM director Stefan Bratzel, the increasing interconnectedness and digitalisation of cars, production processes, and supply chains are contributing to a rising risk of cyberattacks
European unoeurFocusing on the ever-expanding realm of technology within modern cars, particularly in electric vehicles (EVs), the European Union (EU) is going in address the security concerns. These concerns not only revolve around the convenience and safety features provided by electronic systems in cars but also extend to the potential for increased surveillance capabilities.
Acknowledging the gravity of the situation, both the United Nations and the EU have taken action by introducing UN regulations R155 and R156. These regulations specifically target cybersecurity threats stemming from software updates in automobiles. Set to take effect in the EU from July 7, these new rules impose stricter requirements on car manufacturers and their suppliers.
German economist Moritz Schularick has underscored the significance of cybersecurity in the automotive industry, going as far as to deem it a matter of national security. He highlighted the risk of sensitive data being compromised, particularly in the case of electric cars equipped with numerous sensors and cameras. Schularick’s concern is echoed by experts in the field, who warn of the potential for modern vehicles, especially EVs, to inadvertently become “spying machines on four wheels.”
A recent study titled “Automotive Cyber Security,” conducted by Germany’s Center of Automotive Management (CAM) in collaboration with Cisco Systems, sheds light on the imminent threats facing the industry. According to CAM director Stefan Bratzel, the increasing interconnectedness and digitalisation of cars, production processes, and supply chains are contributing to a rising risk of cyberattacks.
The study paints a stark picture of the industry’s vulnerability, citing instances such as Toyota’s production halt due to a suspected cyberattack on a supplier, Continental’s data breach despite robust cybersecurity measures, and Tesla’s experience with hackers gaining access to vehicle software.
In response to the new regulations, some manufacturers have opted to withdraw certain models from their lineup. Volkswagen, for instance, is discontinuing the Up compact car and the Transporter T6.1 van, while Porsche is ceasing production of several models in Europe. Other automakers, including Audi, Renault, and Smart, are also phasing out older models that fail to meet the stringent cybersecurity standards.
Explaining the rationale behind these decisions, VW brand chief Thomas Schäfer cited the prohibitive costs of ensuring compliance with the new regulations. Similarly, Wiebke Fastenrath from Volkswagen’s Commercial Vehicles unit emphasized the impracticality of investing in cybersecurity measures for models with limited remaining lifespan.
However, not all manufacturers are facing such challenges. Mercedes-Benz, for instance, asserts that it is well-prepared for the transition to safer car electronics, with all its architectures meeting or set to meet the UN regulations in time.
Overall, the consensus among industry experts is clear: cybersecurity is paramount for the automotive sector. As Christian Korff from Cisco Systems emphasizes, ensuring the security of vehicles and services is crucial for maintaining customer trust in an increasingly connected world.
