14 different attack methods observed in Q4 2025 automotive vulnerabilities

Breaches with third-party involvement have increased by 60%.

Shadow AI is now the third most common non-malicious insider action detected in Verizon's data loss prevention (DLP) dataset in 2025

Ethernet represented over 25% of all automotive attack vector entries in Q1 2026

Incransom ransomware group published a 200 GB leak from a Tier-1 electronics component supplier in January 2026

There were 264 publicly disclosed ransomware attacks in Q1 2026, a 15% decrease year-on-year.

Organizations with weak NHI management pay approximately $150,000 more to recover from incidents than average.

74% of organizations cite coordinating vulnerability prioritization and remediation as their biggest security issue.

74% of IT and security professionals have experienced vulnerabilities in third-party applications.

65% of technology leaders invest in AI-powered observability to gain deeper, real-time insights into their digital ecosystems.

46% of middle market companies use AI performance monitoring.

51% of Americans aged 35 to 44 are concerned about deepfakes.

64.5% of activity on personal and free-tier AI accounts is business use rather than personal use.

The "Qix" campaign used 25 packages to compromise over 2.5 million downloads.

DrainDead portable EV battery siphoning rig was built for approximately €1,200 using a solar inverter and CCS adapter

Ultra-Fast Wireless Charging attack synchronises with the charger's signal within only three cycles, defeating frequency hopping countermeasures

Cobalt Strike accounted for 38.4% of all OST output (3,944 of 10,272 tracked OST instances), maintaining its position as the primary adversary framework.

Pwn2Own Automotive 2026 in Tokyo produced 76 unique zero-days and $1.047 million in payouts

160 Medium, 75 High, and 16 Critical automotive vulnerabilities identified in Q1 2026

Synacktiv chained an information leak with an out-of-bounds write to achieve a full win against Tesla infotainment via USB at Pwn2Own Automotive 2026