Concerns as rise of connected cars coincides with sharp increase in cyber attacks

Some 67 per cent of new cars registered in the UK are ‘connected’, with automotive cyber attacks rising rapidly

Cyber attacks on connected cars rose by 700 per cent between 2010 and 2019, according to new analysis, prompting experts to warn that drivers should clear all personal data from their cars before selling them.

Some 67 per cent of new cars registered in the UK are ‘connected’, meaning they transmit data to their manufacturer via the internet. By 2026, it’s thought that every single new car will be connected, according to research by energy comparison site Uswitch.

The 700 per cent rise in cyber attacks on connected cars is shown by data from security firm Upstream. In its most recent report on the subject, the company analysed 367 global data-breach incidents between 2010 and 2019 involving cars, 155 of which took place in 2019 alone - a growth of 99 per cent over the previous year.

One incident in October 2019 saw a mobile phone app Mercedes drivers could use to locate and unlock their cars sometimes showed other people’s accounts and vehicle information. The previous month, thieves were caught on camera stealing a Tesla in under 30 seconds using a keyless entry hack. July 2019 saw an exposed database at Honda allowing anyone to see which of its systems had security vulnerabilities, risking 134 million rows of employee data.

Earlier in the year, Toyota suffered two separate cyber attacks in the space of five weeks, with the offenders accessing servers that held sales information related to 3.1 million customers.

Uswitch advises drivers not to trust their cars with too much personal information, and to use a physical security measure to prevent vehicle theft, such as a steering-wheel lock. Motorists are also reminded to ensure the software in their cars is up to date, keep keyless fobs in a Faraday pouch, and clear all personal data from a car before selling it.

Uswitch spoke to Jonathon O’Mara, a cybersecurity expert working for CompareMyVPN. He said: “Even if basic privacy measures were put in place, we feel anonymised data can be easily matched with other elements to break down any attempts to promote user privacy.

“In addition, the car companies themselves can now collect huge swathes of rich personal data - mainly location-based and habitual movements. However, this also covers connected device activity such as calls made, messages and phone numbers, which for privacy-concerned individuals is quite alarming.”

O’Mara called on regulators and cybersecurity firms to “ensure that connected car data is encrypted end-to-end to reduce any threat from a third party”, as well as to monitor what data is actually stored and kept.

Find out what car brands are doing to stop keyless car crime here...

Recommended

Delayed trailer test law changes come into force
Mitsubishi L200 - tow
News

Delayed trailer test law changes come into force

You no longer need to take an extra test to tow a trailer, irrespective of when you passed your driving test
17 Dec 2021
Gridserve announces raft of new motorway electric car charging hubs
Gridserve Electric Forecourt 3
News

Gridserve announces raft of new motorway electric car charging hubs

Gridserve planning a total of 20 Electric Hubs and six Electric Forecourts, with 13 sites already under construction
9 Dec 2021
Stellantis plans huge revenues with new software-driven cars
Fiat 500 dash
News

Stellantis plans huge revenues with new software-driven cars

Stellantis says it’ll rake in more than €20 billion in annual revenues by 2030 thanks to its new technology and subscription services
7 Dec 2021
Company car tax guide 2021/2022: everything you need to know
Executive saloons make popular company cars
Consumer news

Company car tax guide 2021/2022: everything you need to know

Company car tax is bound up in a complex net of emissions, salaries and a car's value; we explain how the system looks for the 2021/22 Financial Year
26 Nov 2021

Most Popular

Next-generation Mercedes E-Class to stick with combustion engines
Mercedes E-Class render
Mercedes E-Class

Next-generation Mercedes E-Class to stick with combustion engines

Mercedes is planning on launching a new E-Class in 2023 and it'll come with petrol, diesel and plug-in hybrid powertrains
21 Jan 2022
New 2022 Land Rover Defender 130 revealed in patent images
Land Rover Defender 130
Land Rover Defender

New 2022 Land Rover Defender 130 revealed in patent images

Stretched Land Rover Defender 130 eight-seater leaked in patent images, showcasing design in full
21 Jan 2022
New Jeep Renegade and Compass e-Hybrids revealed
Jeep Renegade and Compass e-Hybrids
News

New Jeep Renegade and Compass e-Hybrids revealed

Jeep adds conventional hybrid power to Renegade and Compass line-ups, on sale in UK now
20 Jan 2022