Skip to main content

CYBERSTATS

Security Intelligence

HomeTopicsAutomotive Cybersecurity

Automotive Cybersecurity

Cybersecurity statistics about automotive cybersecurity

Related Topics

EV Charging7Regulation7Attack Vectors6CVEs4CWEs4Pwn2Own3

Top Vendors

PCA Cyber Security57

Showing 21-40 of 57 results

Synacktiv chained an information leak with an out-of-bounds write to achieve a full win against Tesla infotainment via USB at Pwn2Own Automotive 2026

PCA Cyber Security5/27/2026
TeslaPwn2Own

Most EVs in DrainDead testing allowed indefinite battery siphoning with repeated session resets; only some (e.g. Volkswagen group) halted discharging after around 60 seconds

PCA Cyber Security5/27/2026
EV ChargingDrainDead

Ultra-Fast Wireless Charging hack drew 76%+ of the power intended for a legitimate EV from inductive chargers

PCA Cyber Security5/27/2026
EV ChargingWireless

US SELF DRIVE Act of 2026 requires the Secretary of Commerce to brief Congress on connected vehicle supply chain security within 180 days

PCA Cyber Security5/27/2026
RegulationSELF DRIVE Act

ChargePoint Home Flex flaw (ZDI-26-197) allows unauthenticated network-adjacent remote code execution as root via OCPP message handling

PCA Cyber Security5/27/2026
EV ChargingChargePoint

Around 60% of automotive vendors had already adopted IDS at time of Automotive Cyber Security Connectivity and SDV Week 2025 survey

PCA Cyber Security5/27/2026
IDSAdoption

102% year-on-year increase in automotive vulnerabilities (Q1 2026 vs Q1 2025)

PCA Cyber Security5/27/2026
CVEsYear-on-Year

Q1 2026 automotive vulnerabilities span 77 unique CWEs

PCA Cyber Security5/27/2026
CWEsQ1 2026

265 unique automotive-specific vulnerabilities identified in Q1 2026

PCA Cyber Security5/27/2026
CVEsQ1 2026

28% increase in automotive vulnerabilities in Q1 2026 compared to Q4 2025

PCA Cyber Security5/27/2026
CVEsQuarter-on-Quarter

Q1 2026 automotive vulnerabilities map to 25 distinct TTPs in the Auto-ISAC Automotive Threat Matrix

PCA Cyber Security5/27/2026
TTPsAuto-ISAC ATM

Web and Local Shell combined for 33% of Q1 2026 automotive attack vectors

PCA Cyber Security5/27/2026
WebLocal Shell

In-vehicle and Backend systems accounted for more than 81% of Q1 2026 automotive vulnerability targets

PCA Cyber Security5/27/2026
In-VehicleBackend

PCA identified 14 unique methods of entry in the Q1 2026 automotive threat landscape

PCA Cyber Security5/27/2026
Attack Vectors

77 distinct CWEs mapped in Q1 2026, up from 64 in Q4 2025

PCA Cyber Security5/27/2026
CWEs

Quarkslab's audit of EVerest open-source EV charging stack found 6 high-severity, 6 medium-severity, 5 low-severity and 3 informational issues

PCA Cyber Security5/27/2026
EV ChargingEVerest

Ultra-Fast Wireless Charging hack drained 76% of EV power on the Alpitronic HYC50 commercial DC fast charger

PCA Cyber Security5/27/2026
EV ChargingAlpitronic

Pwn2Own Automotive 2026 had a record 73 entries

PCA Cyber Security5/27/2026
Pwn2Own

DefenseWeaver multi-agent LLM identified 11 critical attack paths across four automotive projects in TARA testing

PCA Cyber Security5/27/2026
AI/LLMTARA

Kenwood DNR1007XR aftermarket head unit exposes a Linux login prompt over UART at 115200 bps via a hidden board-edge connector

PCA Cyber Security5/27/2026
InfotainmentKenwood