As automotive software grows increasingly complex, navigating security and regulatory requirements has become an essential challenge for manufacturers. Today's vehicles, driven by software-defined systems and connected services, must comply with stringent standards while defending against evolving cyber threats. In this episode, we delve deeply into the critical intersection of automotive software security and industry regulations. We explore how automakers and Tier 1 suppliers can manage comple...
Jun 19, 2025•19 min•Ep. 23
With next-generation vehicles rapidly transforming into software-defined platforms powered by High-Performance Computers (HPCs), the approach to automotive security is fundamentally changing. These powerful central processors are critical for everything from infotainment to autonomous driving, but their consolidation also creates a significant single point of failure and a vastly expanded attack surface. In this briefing, we unpack the unique cybersecurity challenges presented by automotive HPCs...
May 27, 2025•22 min•Ep. 22
With cyber attacks on trucks becoming more common and costly, fleet operators and OEMs must rethink how they protect their vehicle security and data privacy . Trucks are no longer isolated units, they're part of a larger, interconnected automotive ecosystem vulnerable to disruption. In this episode, we unpack the threats, explore real-world hacking scenarios, and dive into actionable cybersecurity strategies for truck manufacturers . The financial and operational stakes are sky-high, especially ...
Apr 21, 2025•10 min•Ep. 21
In this episode, we explore the shift from traditional theft to a new era of digital car theft . Instead of smashing windows, today’s criminals launch automotive cyber-attacks that bypass immobilizers, unlock doors, and hijack control systems, all without leaving a trace. From CAN bus vulnerabilities to cloned key fobs, cybercriminals are finding new attack vectors faster than manufacturers can plug the gaps. As a result, theft rates are soaring and entire automotive cyber security ecosystems—fr...
Apr 08, 2025•10 min•Ep. 20
In this episode, we discuss the groundbreaking concept of Dynamic SBOM and its role in modern automotive software security . Hear how real-time monitoring of third-party library usage can lead to more precise vulnerability management. We explain the process behind intercepting dynamic calls and replacing them with breakpoints for live analysis. Discover how the technology replaces traditional code analysis methods to offer a live, actionable vehicle security view . We break down the technical as...
Mar 09, 2025•8 min•Ep. 19
In the age of connected cars, software-driven systems , and global supply chains, cyber security challenges have become increasingly complex. This episode delves into the pitfalls of relying on disconnected solutions to guard modern vehicles. We’ll show how a platform-centric automotive security approach consolidates everything—from vulnerability scanning to compliance checks—under one roof. We highlight real-world examples showing how holistic visibility and platform integration streamline secu...
Feb 23, 2025•10 min•Ep. 18
As OEMs race to innovate with autonomous driving, V2X communication, and other cutting-edge tech, compliance with UNR 155 and ISO/SAE 21434 has never been more important. But what do these regulations really mean for your day-to-day operations? In this episode, we demystify the role of CSMS and how it supports continuous security through design, development, production, and beyond. We also discuss the critical differences between mandatory guidelines like UNR 155 and global standards like ISO 21...
Feb 09, 2025•17 min•Ep. 17
Touted as an off-the-shelf solution for key fob programming , a mysterious PSP-like Car Key Registration Device promises to sidestep traditional authorization channels. In this episode, we share how the PlaxidityX team simulated various car responses to test whether the device truly mirrored official protocols. They recount the odd mix of user-friendly design and features like “turn ignition on,” which raise eyebrows for anyone concerned about vehicle theft. Surprisingly, the device carried a co...
Feb 02, 2025•11 min•Ep. 16
Have you ever wondered how microcontrollers in vehicles manage memory access behind the scenes? This episode sheds light on the Memory Protection Unit, an essential yet sometimes overlooked hardware layer designed to stop unauthorized reads, writes, and execution. We revisit fundamental principles—like differentiating between the Core MPU (CMPU) and the System MPU (SMPU)—and explain how each can become a target for cyber attackers. Through detailed automotive cyber security case studies involvin...
Jan 26, 2025•30 min•Ep. 15
This episode explores AI’s transformative role in automotive cyber security . As vehicles become increasingly connected and autonomous, cyber threats have evolved, but AI provides the precision and speed needed to counter these challenges. Join us as we unpack the critical role of AI in protecting modern vehicles , from anomaly detection to sophisticated threat investigation using generative AI and large language models. Additionally, we discuss the dark side of AI, where attackers use it to cre...
Jan 22, 2025•12 min•Ep. 4
Intrusion Detection System Managers (IdsM) play a vital role in modern automotive cybersecurity, addressing the challenges posed by complex security events and regulatory requirements. IdsM solutions filter and standardize event data from AUTOSAR and Linux ECUs, reducing inefficiencies in monitoring and analysis. In this episode, we will explore how challenges related to fragmented formats, limited ECU storage, and escalating data volumes are addressed by IdsM. By filtering irrelevant events loc...
Jan 19, 2025•9 min•Ep. 14
The rise of CAN injection car theft has introduced a new level of sophistication to vehicle hacking, allowing thieves to access the CAN bus. In this episode, we discuss how this technique allows hackers to tap into the CAN bus through exposed wiring, sending fake messages that bypass security measures and immobilizers. The impact of these attacks extends beyond individual car owners, posing significant challenges for automakers in terms of reputational risks and costly recalls. Insurers are also...
Jan 12, 2025•9 min•Ep. 13
Keyless entry systems, once considered the pinnacle of vehicle convenience, are now a major target for hackers and car thieves. In today’s episode, we’ll explore the vulnerabilities in Remote and Passive Keyless Entry (RKE/PKE) systems , focusing on how replay, relay, and roll jam attacks exploit their weaknesses. We break down these attack methods, illustrating how hackers bypass rolling codes, exploit weak cryptographic implementations, and outsmart proximity-based systems. We’ll also discuss ...
Jan 05, 2025•12 min•Ep. 12
Automotive cybersecurity is becoming increasingly important as electric vehicles face new vulnerabilities. In this episode, we explore a major flaw discovered in the EVerest open-source charging firmware, which could allow attackers to take control of charging stations and potentially compromise vehicles themselves. This vulnerability serves as a stark reminder of the importance of securing EV charging systems as part of the broader electric vehicle infrastructure. As electric vehicles become mo...
Dec 22, 2024•8 min•Ep. 11
Automotive networks face an alarming threat: Man-in-the-Middle (MITM) attacks exploiting the SOME/IP protocol . This episode explores how attackers intercept and manipulate communications between ECUs using in-vehicle Ethernet networks , enabling them to falsify data, disrupt services, and compromise safety. We outline the attack setup, flow, and the devastating impacts on vehicle behavior, from denial of service to user information disclosure. Using real-world examples, we show how attackers ex...
Dec 15, 2024•8 min•Ep. 10
In this episode, we explore how industry leaders PlaxidityX, CyberArk, Device Authority, and Microsoft have joined forces to pioneer the next generation of automotive and mobility security solutions . With new regulatory mandates like UNECE WP.29 and ISO 21434 on the horizon, the automotive industry requires a holistic approach to securing vehicles across their lifecycle. This collaboration integrates technologies like GitHub Copilot and Azure OpenAI Security Copilot to provide end-to-end securi...
Dec 08, 2024•9 min•Ep. 9
The motorcycle industry is facing a new challenge: automotive cybersecurity . This episode explores how UNR 155, initially designed for passenger vehicles, now includes motorcycles, scooters, and high-speed e-bikes. We’ll discuss what this regulation means, why it’s happening, and how it could reshape the two-wheeler market as manufacturers scramble to comply with new cybersecurity standards. Cybersecurity for two-wheelers involves establishing a Cyber Security Management System (CSMS) and passi...
Dec 01, 2024•8 min•Ep. 8
Learn how PlaxidityX’s automotive expertise and Eviden’s MDR capabilities combine to create an end-to-end solution for vehicle security. This episode covers the benefits of establishing a dedicated Vehicle SOC (VSOC), an emerging necessity in the industry to monitor, detect, and respond to cyber-attacks in real time. We'll discuss the importance of Vehicle Security Operations Centers (VSOCs) and the specific risks vehicles face, including remote access and data privacy concerns. This collaborati...
Nov 24, 2024•9 min•Ep. 7
The connected car and smart home ecosystems are on a collision course, bringing convenience and innovation, but also creating serious cybersecurity concerns. This episode delves into what happens when cars and homes start talking to each other, thanks to new collaborations like Samsung and Hyundai's initiative. We’ll look at the benefits, like vehicle control through a home app and energy-saving scenarios when your car adjusts your home’s settings based on your commute. However, as these ecosyst...
Nov 17, 2024•10 min•Ep. 6
As vehicles become more connected, cyber security risks grow, making effective risk management a priority in the automotive sector . In this episode, we explore Threat Analysis and Risk Assessment (TARA) in automotive cyber security, and why automating this process is essential to keep pace with evolving threats and regulatory requirements. We’ll also examine the ISO/SAE 21434 and UNR 155 standards, which drive the need for consistent, high-quality risk assessments. We focus on PlaxidityX’s Secu...
Nov 10, 2024•9 min•Ep. 5
As the automotive industry moves toward software-defined vehicles, ensuring the security of ECUs is paramount. ECUs handle critical vehicle functions, and with their increasing connectivity, they are more vulnerable to cyber attacks. SELinux is a trusted solution for managing access control in Linux-based systems, including ECUs, but on its own, it cannot fully meet the stringent requirements of automotive cyber security . To bridge these gaps, many OEMs are turning to Host Intrusion Detection a...
Oct 27, 2024•11 min•Ep. 3
Automotive cyber security is becoming a critical concern as software-defined vehicles (SDVs) increasingly dominate the market. In this episode, we explore how DevSecOps ensures that cyber security is integrated at every stage of the automotive software development process. By adopting a security-by-design approach, automakers can accelerate production timelines, reduce vulnerabilities, and improve overall vehicle safety. We also dive into the features of the PlaxidityX DevSecOps Platform , which...
Oct 20, 2024•7 min•Ep. 2
In this episode of the Plaxidity X automotive cybersecurity podcast, Cars, Hackers, & Cybersecurity, we explore the groundbreaking transition from Software Defined Vehicles (SDVs) to User Defined Vehicles (UDVs) and what it means for the automotive industry. Modern vehicles are no longer just machines—they are customizable digital platforms, allowing car owners to install apps, update software, and tailor their driving experience to meet their personal needs, much like a smartphone. We’ll de...
Oct 13, 2024•8 min•Ep. 1
