Automotive Security Leaders Must Take Immediate Action to Mitigate the Surging Cyber Threats--Upstream Report Reveals Critical Gaps

Rhea-AI Summary

Upstream Security released its 2025 Automotive & Smart Mobility Cybersecurity Report, revealing alarming trends in automotive cybersecurity. The report shows that 60% of cyber incidents in 2024 affected thousands to millions of mobility assets, with massive-scale attacks more than tripling from 5% to 19% year-over-year.

Key findings include a surge in mobility-specific ransomware attacks, with 108 reported ransom attacks and 214 data breaches in 2024. A notable incident involved a US software provider serving 15,000 automotive dealerships, causing $1.02 billion in estimated losses. The total number of incidents reached 409 in 2024, up from 295 in 2023, with 92% of attacks executed remotely and 85% being long-range attacks.

Data and privacy-related incidents rose by 20% to account for 60% of all cases, while car system manipulation incidents increased to over 35%. The report emphasizes that current regulatory measures are insufficient to address the growing cyber risks in the automotive sector.

Positive

• None.

Negative

• 60% of cyber incidents affected thousands to millions of mobility assets
• Massive-scale attacks tripled from 5% to 19% in 2024
• 108 ransomware attacks and 214 data breaches reported in 2024
• Single ransomware attack caused $1.02 billion in losses
• Total incidents increased 39% (409 vs 295) year-over-year
• Data and privacy incidents up 20% to 60% of all cases
• Car system manipulation incidents rose to over 35%

Insights

Cybersecurity Technology Analyst

The automotive industry faces a watershed moment in cybersecurity that poses significant financial and operational risks across the entire value chain. The 409 documented incidents in 2024, up from 295 in 2023, represent just the tip of the iceberg, as many attacks likely go unreported. The 60% of cyber incidents affecting thousands to millions of vehicles signals a critical shift from isolated incidents to systemic risks.

The financial implications are staggering. The reported $1.02 billion loss from a single ransomware attack on dealership software demonstrates the magnitude of potential damages. This will likely trigger a cascade of effects: 1) Increased cybersecurity insurance premiums for automotive companies 2) Higher operational costs as manufacturers invest in defensive measures 3) Potential regulatory fines for inadequate protection of consumer data, given that 60% of incidents involved data privacy breaches.

The 92% remote attack rate and 85% long-range execution capability indicate that traditional perimeter security measures are insufficient. This necessitates a fundamental shift in how automotive companies approach cybersecurity, requiring substantial investments in cloud-based security infrastructure and real-time monitoring systems. Companies that fail to adapt risk severe reputational damage and loss of market share, particularly as vehicle software complexity increases and autonomous capabilities expand.

Automotive Industry Strategist

The automotive industry's rapid digitalization has created an unprecedented security crisis that threatens to reshape competitive dynamics. The surge in telematics and application server attacks from 43% to 66% between 2023 and 2024 exposes critical vulnerabilities in the industry's digital transformation strategy.

This security challenge creates a clear competitive differentiator. Manufacturers who can demonstrate robust cybersecurity measures will likely command premium positioning and stronger customer trust. The rising threat of large-scale attacks affecting millions of vehicles simultaneously could force automakers to reevaluate their software development approaches and supplier relationships.

The complexity of modern vehicle systems, evidenced by the 35% increase in car system manipulation incidents, suggests that automotive companies must fundamentally rethink their approach to system architecture and security. This could delay autonomous vehicle deployment timelines and necessitate more extensive testing protocols, potentially creating a significant gap between leaders and laggards in the race toward full autonomy.

Upstream's 2025 Automotive & Smart Mobility Cybersecurity Report reveals that 60% of cyber incidents could affect thousands to millions of connected vehicles, with massive-scale attacks more than tripling; the report emphasizes that current regulatory requirements are insufficient to address expanding cyber risks.

ANN ARBOR, Mich., Feb. 11, 2025 /PRNewswire/ -- Upstream Security, the leading provider of cloud-based cybersecurity and data management platform purpose-built for automotive, smart mobility, and IoT ecosystem, today released the 2025 Automotive & Smart Mobility Cybersecurity Report. The annual report, returning for its seventh year, highlights that despite the increased regulatory attention, the number, scale, and severity of cyber attacks continues to grow, showing a false sense of security and resilience. Automakers and mobility stakeholders have to go beyond regulations to address the threats causing serious implications for safety, operational availability and data privacy.

The report revealed that in 2024, 60% of cybersecurity incidents in the automotive and smart mobility sectors affected thousands to millions of mobility assets, including vehicles, EV charging stations, smart mobility apps, and connected devices. Notably, massive-scale incidents—each impacting millions of vehicles—more than tripled, rising from 5% in 2023 to 19% in 2024. This sharp increase highlights the urgent need for organizations to prioritize resilience by extending their cybersecurity efforts beyond regulatory compliance.

The rise of software-defined and autonomous vehicles has introduced new vulnerabilities, leading to a widening cybersecurity gap. Additionally, critical infrastructure in smart mobility devices, like EV chargers and fleet management systems, has expanded the attack surface and magnified the stakes. Mobility-specific ransomware attacks surged in 2024 causing unprecedented disruptions with 108 reported ransom attacks and 214 data breaches. One of the most impactful incidents was a ransomware attack in June on a leading US-based software provider used by 15,000 automotive dealerships which resulted in halted operations for nearly three weeks, estimating losses at $1.02 billion.

"The cybersecurity landscape across the Automotive and Smart Mobility ecosystem is poised to become more complex than ever," said Yoav Levy, CEO and co-founder of Upstream. "Cyber threats are evolving faster than the industry is prepared to handle, outpacing regulation-driven measures. Threat actors have already shifted toward large-scale, sophisticated and AI-powered attack methods, targeting not only vehicles but also interconnected systems such as EV charging infrastructure, API-driven apps, and smart mobility IoT devices. This growing attack surface demands a transformative and proactive approach to cybersecurity."

Cyberattacks in 2024 became more sophisticated and frequent, targeting vehicles and backend systems, as well as smart mobility platforms, devices, and applications. 65% of publicly reported cyber incidents were carried out by black hat actors with malicious intent. 92% of attacks were executed remotely, supporting the surge in scale and impact, of which 85% were long-range and did not require any physical proximity to the targeted asset. The ecosystem experienced a significant surge in telematics and application server attacks in 2024— 43% of incidents in 2023 rising to 66% in 2024.

In addition to monitoring publicly reported cyber incidents, Upstream's AutoThreat® team monitors the deep and dark web for threat actors targeting connected vehicles, mobility applications and devices. When zooming in on deep and dark web activities carried out by black hat hackers, 70% activities had the potential to impact thousands to millions of mobility assets and over 76% targeted multiple stakeholders and had a global reach.

Additional key findings in the report include:

• 2024 saw 409 new incidents (up from 295 in 2023), contributing to a total of 1,877 documented cases since 2010.
• The dramatic rise in incidents is largely attributed to a sharp escalation in ransomware attacks targeting the mobility sector.
• Data and privacy-related incidents accounted for 60% of 2024 incidents, up 20% from 2023.
• The percentage of incidents involving car system manipulation and control of vehicle systems increased dramatically in 2024, accounting for over 35% of incidents.

The report further delves into a range of topics including China's strategic automotive investments and impact on the cyber landscape, EV charging infrastructure risks, 2024's attack vectors and today's regulatory reality. Download the full 2025 Upstream Global Automotive & Smart Mobility Cybersecurity Report here.

About Upstream Security

Upstream delivers a cloud-based, AI-powered data management platform purpose-built for connected vehicles, smart mobility, and IoT ecosystem. The Upstream Platform transforms fragmented, distributed mobility data into centralized, structured, and contextualized data lakes, unlocking its full potential. By leveraging this data, Upstream empowers customers with advanced, AI-driven applications across various use cases, including proactive vehicle quality management, cybersecurity detection and response (XDR), fraud prevention, observability, usage-based insurance, and more.

Upstream Media Contact
Mushkie Meyer
Mushkie@headline.media
US: +1 914 336 4035
UK: +44 203 769 4034

 

View original content:https://www.prnewswire.com/news-releases/automotive-security-leaders-must-take-immediate-action-to-mitigate-the-surging-cyber-threatsupstream-report-reveals-critical-gaps-302373309.html

SOURCE Upstream

FAQ

What are the key findings of Upstream's 2025 Automotive Cybersecurity Report?

The report reveals that 60% of cyber incidents affected thousands to millions of mobility assets, with massive-scale attacks tripling from 5% to 19%. There were 409 new incidents in 2024, including 108 ransomware attacks and 214 data breaches.

How much did automotive cybersecurity incidents increase in 2024?

Cybersecurity incidents increased from 295 in 2023 to 409 in 2024, representing a 39% increase. The total documented cases since 2010 reached 1,877.

What was the largest financial impact from a single automotive cyber attack in 2024?

A ransomware attack on a US-based software provider serving 15,000 automotive dealerships resulted in estimated losses of $1.02 billion and halted operations for nearly three weeks.

What percentage of automotive cyber attacks were executed remotely in 2024?

92% of attacks were executed remotely, with 85% being long-range attacks that did not require physical proximity to the targeted asset.

How did data and privacy-related automotive incidents change in 2024?

Data and privacy-related incidents increased by 20% compared to 2023, accounting for 60% of all incidents in 2024.