Trend Micro Helps Connected Car Stakeholders Manage Cyber Risk

Rhea-AI Summary

Trend Micro has released a new research report aimed at assisting manufacturers, suppliers, and government bodies in managing cyber risk for connected vehicles. The report interprets the WP.29 regulation from the UN, highlighting attack vectors that pose significant threats to the connected car industry. Key vulnerabilities include back-end server attacks, denial of service via communication channels, and third-party software exploitation. The research also evaluates threat severity using the DREAD model, projecting how threats will evolve in the next 5-10 years. This report builds on previous studies regarding 5G and connected vehicle risks.

Positive

• Trend Micro's research addresses critical cyber risks in the connected vehicle sector.
• The report provides actionable recommendations for stakeholders to prioritize cyber defense.
• Utilization of the DREAD model allows for a structured approach to threat assessment.

Negative

• Potential vulnerabilities outlined in the report could lead to increased cybersecurity threats in the connected car industry.

DALLAS, Sept. 2, 2021 /PRNewswire/ -- Trend Micro Incorporated (TYO: 4704; TSE: 4704), a global cybersecurity leader, is committed to managing cyber risk no matter where it occurs. Today's new research report is designed to help manufacturers, suppliers, government bodies and service providers successfully manage cyber risk while implementing a key United Nations regulation on connected vehicle cybersecurity.

To read a full copy of the report, Identifying Cybersecurity Focus Areas in Connected Cars Based on WP.29 UN R155 Attack Vectors and Beyond, please visit: https://documents.trendmicro.com/assets/white_papers/media-wp-a-roadmap-to-secure-connected-cars.pdf.

"Cyber risk is everywhere – even in your car. Vehicles are gaining intelligence, computing power, and connectivity, creating new attack scenarios for cybercriminals," said William Malik, vice president of infrastructure strategies for Trend Micro. "Understanding these cybersecurity recommendations and regulations will help manufacturers future-proof mobility. Our latest research report helps interpret and implement the WP.29 regulation by prioritizing the threats to the connected car industry."

To help stakeholders prioritize all the threats and attack vectors outlined by WP.29, Trend Micro experts calculated the severity levels of these attack vectors using the industry standard DREAD threat model.

These attack vectors should be given the highest priority, according to the research:

• Back-end servers used to attack a vehicle or extract data
• Denial of service attacks via communication channels to disrupt vehicle functions
• Hosted third-party software (e.g. entertainment apps) used to attack vehicle systems

Researchers also recalculated the DREAD threat model to show how threat severity will evolve over the next 5-10 years and highlighted new and emerging vectors not included in the WP.29 regulation.

The United Nations Economic Commission for Europe World Forum for Harmonization of Vehicle Regulations (WP.29) regulates vehicle safety around the world. The regulation contains seven high-level and 30 sub-level descriptions of vulnerabilities and threats, including 69 attack vectors. The regulations along with Trend Micro's findings will support the connected car industry's understanding of cyber risks to best prioritize their defense.

This latest Trend Micro report follows on from a February 2021 study on connected car security in which explored risks with connected vehicles interconnected with 5G, Cloud, and other connected technologies.

About Trend Micro
Trend Micro, a global cybersecurity leader, helps make the world safe for exchanging digital information. Fueled by decades of security expertise, global threat research, and continuous innovation, Trend Micro's cybersecurity platform protects hundreds of thousands of organizations and millions of individuals across clouds, networks, devices, and endpoints. As a leader in cloud and enterprise cybersecurity, the platform delivers a powerful range of advanced threat defense techniques optimized for environments like AWS, Microsoft, and Google, and central visibility for better, faster detection and response. With 7,000 employees across 65 countries, Trend Micro enables organizations to simplify and secure their connected world. www.TrendMicro.com. 

View original content:https://www.prnewswire.com/news-releases/trend-micro-helps-connected-car-stakeholders-manage-cyber-risk-301368139.html

SOURCE Trend Micro Incorporated

FAQ

What is the purpose of Trend Micro's new research report released on Sept. 2, 2021?

The report aims to help manufacturers and suppliers manage cyber risks in compliance with the UN's WP.29 regulation.

Which attack vectors does the Trend Micro report prioritize for connected vehicles?

The report highlights back-end server attacks, denial of service via communication channels, and exploitation of third-party software as key threats.

How does the DREAD model contribute to the report by Trend Micro?

The DREAD model is used to calculate the severity of attack vectors, assisting stakeholders in prioritizing cybersecurity measures.

What are the long-term projections regarding cybersecurity threats mentioned in the report?

The report predicts that the severity of threats will evolve over the next 5-10 years, highlighting emerging vulnerabilities.

How does Trend Micro's report relate to previous studies on connected vehicle security?

This report builds on a February 2021 study that explored the cybersecurity risks associated with connected vehicles and technologies like 5G.