The Importance of Cybersecurity in the Auto, Autoparts Industries

In an increasingly connected world, the automotive industry faces complex challenges in cybersecurity. Modern vehicles are no longer just mechanical machines; they are sophisticated computers that generate and process vast amounts of data. While this evolution offers significant benefits in terms of efficiency and user experience, it also exposes vehicles to substantial cyber risks.

The need to address cybersecurity in the automotive industry became evident in 2015 when researchers proved that an attacker could remotely control a connected vehicle, potentially affecting 1.4 million units. Since then, attack vectors have evolved, ranging from sensors and software to electric vehicle charging infrastructure. In 2023, over 290 major cybersecurity incidents related to automobiles and smart mobility were reported.

These incidents show how attacks can compromise user safety. Research has shown that attackers can manipulate Light Detection And Ranging (LiDAR) sensors — used to detect objects and prevent collisions — altering the vehicle's perception of its surroundings. Similarly, a cybersecurity researcher exploited a vulnerability in a third-party application to remotely control 25 electric vehicles across different parts of the world, underscoring the critical need to address these gaps immediately.

Cybersecurity in this industry is not solely the responsibility of Original Equipment Manufacturers (OEMs). It is a shared task involving multiple key players throughout the supply chain.

Vehicle manufacturers are responsible for integrating security measures throughout the vehicle's life cycle, from design to after-sales service. Regulations such as UNECE R155 and the ISO/SAE 21434 standard reinforce the need for comprehensive cybersecurity management in the industry.

Tier 1 and Tier 2 suppliers play a crucial role in the supply chain by developing components and software that meet stringent security requirements. Their collaboration is essential to mitigating risks and ensuring systems are resilient against attacks. Similarly, companies specializing in cybersecurity solutions provide technologies such as intrusion detection systems and advanced encryption, which are vital for protecting both vehicles and connected infrastructure.

To support the ongoing growth of this sector in Mexico, the National Auto Parts Industry (INA) unites auto parts suppliers and companies involved in the broader automotive value chain, from software manufacturers to developers of electric charging infrastructure and cybersecurity solutions.

Cybersecurity is no longer just a priority; it is a requirement for ensuring consumer trust, road safety, and the industry's competitiveness. For Mexico's automotive and auto parts industries, collaborating with government, academia, and industry is indispensable. At INA, we will continue to lead efforts to make Mexico a global benchmark for automotive innovation and security in the future — a future where Mexico participates and leads the way.