VicOne

7/7 Read the full analysis → vicone.com/blog/prerequis… #PSIRT #ISOSAE21434 #UNECER155 #SDV #TARA #ConnectedVehicle

6/7 The more useful question is which vulnerability can be exploited first, and through which path. How are your PSIRT, product design, and development teams collaborating when a new CVE is disclosed? #AutomotiveCybersecurity #VulnerabilityManagement

🧵1/7 A CVSS score tells you how severe a vulnerability is. It does not tell you how quickly it can be turned into an exploit.

Robots are everywhere. The security research is not. The RHC CFP for DEF CON 34 is open. Robot security, AI/autonomy attacks, ROS2, sensor spoofing, firmware, cloud APIs, sim-to-real, defensive design. Deadline: June 14, 2026 robotichackingcommunity.com/cfp.html #DEFCON #RobotSecurity

5/5 Hear the full research at 13TH ESCAR USA CONFERENCE 📅May 20 ⏲️02:40–03:05 PM EDT 📍Sheraton Detroit Novi Hotel 📖Compliance Offence as a Service: Why OEMs Pay for Unconventional Adversaries in the Tailpipes by Shin Li, VicOne

4/5 This grey market is no longer just an enforcement problem. Left unaddressed, it becomes a significant cost burden that lands on the OEM.

🧵1/5 Euro 7 just gave OEMs a new kind of adversary. Emissions compliance just became a cybersecurity problem. There is already a grey market for this. VicOne's threat intelligence found a structured ecosystem built entirely around defeating Euro 7 emissions controls.

How is your team assessing Linux kernel exposure across embedded and containerized vehicle systems? Read the full VicOne incident blog here: lnkd.in/g2TFBmKV #AutomotiveCybersecurity #ThreatIntelligence #CyberRisk #Linux

VicOne’s CyberThreat Research Lab examined what these vulnerabilities mean for automotive cybersecurity teams, OEMs, and Tier 1 suppliers, and why rapid patching, runtime monitoring, and behavioral detection of anomalous activity are becoming increasingly important.

Low-level Linux kernel flaws can become operational risks for connected vehicles — and this is not a single CVE to patch and move on from.

405 incidents. Ransomware as a supply chain risk. EV charging under sustained pressure. AI reshaping the attack surface. VicOne's Q1 2026 Situational Awareness Report has the full breakdown → bit.ly/3QOTUFQ #AutomotiveCybersecurity #ThreatIntelligence

AI is now both an attack method and an exposure point. VicOne's threat intelligence tracked AI-assisted exploit chaining, an AI agent account compromise tied to an automotive supplier executive, and AI-assisted CAN bus reverse engineering — all in Q1 2026 alone.

EV charging infrastructure incidents more than tripled — from 7 in Q4 2025 to 26 in Q1 2026. Authentication and session management weaknesses dominate the vulnerability pattern. These aren't obscure flaws. They're preventable through secure design.