The U.S. Federal Bureau of Investigation (FBI) Cyber Division warned private industry partners of incoming cyberattacks against the US automotive industry targeting sensitive corporate and enterprise data.
The Private Industry Notification (PIN) detailing this alert was seen by BleepingComputer after it was issued to partners by the FBI on November 19, 2019.
"The FBI has observed incidents since late 2018 in which unidentified cyber actors have increasingly targeted the automotive industry with cyberattacks to obtain sensitive customer data, network account passwords, and internal enterprise network details," the agency says in the PIN.
"The FBI assesses the automotive industry likely will face a wide-range of cyber threats and malicious activity in the near future as the vast amount of data collected by Internet-connected vehicles and autonomous vehicles become a highly valued target for nation-state and financially-motivated actors."
Financially motivated and state-backed actors taking on more targets
The automotive industry is facing an increased barrage of incoming malicious attacks and threats according to the FBI seeing that the wide range and large quantity of information it collects becomes progressively more valuable for threat actors.
Extensive amounts and varied types of information gets collected daily from autonomous and Internet-connected vehicles, and the servers it's stored will allow potential attackers to get their hands on the huge trove of data via phishing and brute-force attacks.
However, besides the bad actors getting away scot-free with sensitive data, the automotive industry is also facing other types of threats, including but not limited to data destruction following ransomware attacks and persistent unauthorized access to their enterprise networks.
The agency says that phishing and brute-force attacks against automotive industry entities from the U.S. have already successfully compromised several organizations and ..
Support the originator by clicking the read the rest link below.
