현대오토에버는 자동차 산업에 중대한 위협이 될 수 있는 공급망 공격을 예방하기 위해 차량 부품 협력사의 공장 보안 강화에 나섰다고 11일 밝혔다.
Increase in attempts to attack component suppliers, including bypassing solutions and introducing malicious codes
Protection from external potential threats · Goal of stable supply chain operation Hyundai Autoever is embarking on a ‘smart symbiosis’ to strengthen the security of its auto parts suppliers’ factories.
Hyundai Autoever announced on the 11th that it has begun strengthening the security of its vehicle parts suppliers' factories to prevent supply chain attacks that could pose a significant threat to the automobile industry.
As cyberattack threats across industries increase, automotive parts suppliers' factories are required to strengthen their security.
The supply chain of the automobile industry is like a chain, and if a 'weak link' such as a partner is attacked, it can cause disruption not only in the operations of the partner but also in the production of the final product, the automobile.
This is why there are increasing attempts to attack relatively vulnerable parts suppliers rather than automakers with robust security systems.
Partners are more vulnerable to external security threats, such as direct external attacks, malware infiltration, and solution bypass, than organizations within the automotive group.
Even in the global automobile industry, partners are exposed to security threats such as ransomware, and data is stolen or lost during production.The number of damage cases, such as those experiencing a single incident, is increasing.
In fact, there was a recent case where a parts supplier for a global automaker was hit by a ransomware attack and experienced a system failure, which caused the automaker's factory to completely halt operations.
Hyundai Autoever has taken steps to strengthen its supply chain cybersecurity to respond to these threats.
Supply chain cybersecurity aims to protect the systems, networks, software, and data of companies that make up the supply chain from potential external threats to ensure the stable operation of the supply chain.
This security enhancement for partner factories will be implemented for 153 vehicle parts partner companies.
Hyundai Autoever has started diagnosing vulnerabilities, and in the second half of the year, it plans to present measures to address vulnerabilities and conduct an implementation diagnosis to confirm whether measures have been taken to address vulnerabilities.
Previously, Hyundai Autoever had conducted security inspections and vulnerability improvements for approximately 30 of Hyundai Autoever's ICT development partners over the past two years to raise the security level of the entire software supply ecosystem.
A Hyundai Autoever official emphasized, “We will expand the target of cybersecurity reinforcement from our partners to auto parts manufacturers to safely protect the automobile industry,” and “We will do our best to prevent serious damage such as automobile production stoppages by continuously expanding the target and raising the security level of the entire supply chain.”