The cybersecurity landscape has deteriorated rapidly. According to Upstream Security's latest analysis, the automotive sector experienced 409 publicly reported cybersecurity incidents in 2024—a staggering 39% increase from the 295 incidents recorded in 2023. Even more concerning, massive-scale attacks impacting millions of vehicles jumped from just 5% of incidents in 2023 to 19% in 2024—a nearly four-fold increase that signals a fundamental shift in how cybercriminals are targeting our industry.

VicOne's 2025 Automotive Cybersecurity Report, released this past March, estimates that cyberattacks between 2022 and 2024 cost the industry tens of billions of dollars. This isn't theoretical risk anymore—it's real financial impact hitting bottom lines across the entire automotive ecosystem, from OEMs to suppliers to dealerships.

The Technical Reality: Rolling Supercomputers Under Attack

Modern vehicles have evolved into what the industry now calls software-defined vehicles (SDVs), containing over 100 million lines of code—with some projections suggesting this could reach 650 million lines by the end of 2025. To put this in perspective, that's more complex than most enterprise software systems running Fortune 500 companies.

The latest VicOne data reveals that 77% of automotive vulnerabilities are found within onboard systems—not in charging infrastructure or cloud platforms, but in the cars themselves. The infotainment system used to stream music could be the same pathway a hacker uses to access critical vehicle functions.

Criminal Sophistication: Organized Groups Target Automotive

We're no longer dealing with individual hackers. Organized criminal groups like Cactus, LockBit, Play, and 8Base are specifically targeting the automotive industry with significant resources and coordination. These groups have exploited vulnerabilities in VPN appliances and cloud platforms to disrupt OEMs, dealerships, and supply chains with devastating effect.

The Path Forward: Security by Design

As Max Cheng, CEO of VicOne, notes: "A proactive, multilayered approach to cybersecurity across all levels of the supply chain will help the automotive industry stay ahead of evolving threats and thrive in pursuing the unprecedented opportunities ahead."

The industry must embrace what experts call "security by design"—building protection into every layer from the ground up rather than bolting security onto existing systems. This includes the critical capability for over-the-air security updates, which has evolved from a convenience feature to a fundamental requirement.

About Auto Agentic:

Auto Agentic (www.autoagentic.ai) is pioneering AI-driven solutions transforming automotive retail. Founded in 2024, we deliver intelligent, adaptive solutions designed to help dealerships streamline operations, optimize sales performance, and elevate customer experience. With a focus on ethical AI, seamless integrations, and real-time insights, Auto Agentic empowers dealership teams—never replaces them—unlocking new levels of productivity and profitability.

Our suite of intelligent agents handles everything from lead nurturing and inventory optimization to service appointment management and customer follow-ups. By using AI to replace time-consuming tasks and augmenting decision-making with advanced analytics, Auto Agentic helps dealerships stay competitive in a rapidly evolving market.

Available on all major podcast platforms. New episodes every Tuesday, Thursday, and Saturday.