This blog is part of a series on the monetization of connected vehicles through cloud-based agentless cybersecurity tools, written by Ric Vicari, Upstream’s UK-based VP…
Category: VSOC
Cybersecurity for Connected Vehicles: From Cost Centre to Value Centre (Part 1)
This blog is part of a series on the monetization of connected vehicles through cloud-based agentless cybersecurity tools, written by Ric Vicari, Upstream’s UK-based VP…
How Hackers Gain access to Your Vehicle
In modern connected vehicles, car hacking remains a top-of-mind threat. 2021 saw theft via manipulation of the keyless entry system increase significantly including a 93%…
Protecting Vehicles and Automotive Servers from log4shell
Four days ago, the cybersecurity world was introduced to Log4Shell — one of the most profound vulnerabilities of 2021. We at Upstream were prepared for…
BadAlloc Might Pose Risk to More Than One Hundred Million Vehicles
We are constantly monitoring cyber incidents in the mobility landscape as part of our commitment to make mobility more safe and secure for everyone. With…
Understanding the UNECE WP.29 Cybersecurity Regulation (CSMS)
On June 25, 2020, after roughly two years of preparations and revisions, the United Nations formally adopted two new regulations on automotive cybersecurity 1. Automotive regulations…
From a Single TCU to Full Control
Security researchers from Pen Test Partners1 compromised an entire automotive corporation through the TCU (telematics control unit). They manipulated the TCU of a vehicle and…
Warning: This car may contain vulnerable Software or Hardware
In many industries, there is growing demand for transparency in product processes and content. Companies are increasingly asked to detail the composition of their products…
What Does a Magical God of Death Have to Do With Automotive Cybersecurity?
In a humorous play-on-words, CVE-2021-3156, nicknamed “Baron Samedit” by the researchers who discovered the vulnerability, paid homage to the folklore death god “Baron Samedi” and…
ISO/SAE 21434: Setting the Standard for Automotive Cybersecurity
Understanding the ISO/SAE 21434 draft standard and Upstream Security’s solutions for effective compliance in the realm of automotive cybersecurity. Why was this automotive cybersecurity standard needed? As…
Upstream – $30M Series B for Shifting into High Gear
We launched Upstream in early 2017 with a mission to make connected vehicles safe and secure at a time when the automotive industry is seeing…
How to Protect Against Telematics Server Attacks
Misconfigured reporting server gave hackers direct access to sensitive data In May 2018, a bug led to a major security threat affecting CalAmp, a telematics…
How to Protect Against Remote Multi-Vehicle Attacks
Hacker Gains Access to Thousands of Cars Worldwide In April 2019, a hacker gained access to thousands of cars around the world via a location…
How to Protect Against Hacks on Car Sharing Services?
100 Luxury Vehicles Stolen from Car2Go Back in April 2019, criminals accessed the Daimler Car2Go app to steal over 100 luxury vehicles in the Chicago…
Q1 2019 Sees a Rapid Growth of Automotive Cyber Incidents
The cyber threats targeting the automotive landscape have been opening eyes for the past few years – and for a good reason. Unlike cyber threats…