There is an outlook that cyberattacks targeting automakers will increase this year.
Global cybersecurity company Kaspersky said in its report "Cyberthreats to the automotive industry in 2026," published on the 9th, that "attacks by malicious actors seeking financial gain are expected to continue in 2026, and their main tactic is forecast to be ransomware," and stated accordingly. Ransomware is a portmanteau of ransom and software, referring to a cyberattack in which an attacker hacks into or encrypts a person's or corporations' computers or servers and then demands money in exchange for restoration.
The report said, "New disclosures may emerge of confidential user data and vehicle movement information leaking from automaker infrastructure," adding, "Supply chain attacks via breaches of partner systems are also expected, with attackers aiming to disrupt core systems and cause financial losses."
It added, "As modern cars evolve into highly complex digital devices with extensive remote communication capabilities, the potential for malicious attacks targeting not only the vehicles themselves but also the various systems to which they are connected is expanding."
Vulnerabilities targeted by hackers include the control systems of remote lock function modules installed in vehicles by car-sharing and taxi corporations, the systems of transportation and logistics corporations, and infrastructure at gas stations and electric vehicle charging stations. The report said, "Car-sharing and taxi corporations are installing modules that support features such as remote locking in their vehicles. If an attacker gains access to the control system of those modules, it becomes possible to carry out mass vehicle locking to demand money or to commit sabotage that paralyzes services."
Furthermore, the risk has grown that attackers will remotely hack transportation and logistics corporations' systems to intercept order information, physically seize actual cargo, or manipulate shipping data to divert cargo to specific addresses and then resell it. Kaspersky explained that gas stations and EV charging stations connected via cloud infrastructure also offer hackers a variety of attack opportunities. The report said, "Attacks may target cloud infrastructure to directly steal fuel or electricity, or to steal customer data such as personal information and fuel card information."
Lee Hyo-eun, head of Kaspersky's Korea office, said, "Korea has made rapid progress in the digitalization of transportation, but at the same time, transportation infrastructure is exposed to numerous cyberthreats," adding, "Both automakers and logistics corporations can be targets, so they must build strong security systems."