As cyberattacks against the automotive industry intensify, dealerships face increasing pressure to fortify their digital defenses. In this episode of Driving Solutions, Brad Holton, founder of Proton I.T., discusses the recent surge in ransomware attacks, how dealers have been impacted, and what can be done to safeguard operations. Holton also shares insights on the need for a fresh approach to cybersecurity and why dealerships can no longer afford to ignore this growing threat.
Key Takeaways
1. Holton highlights that hackers are increasingly targeting automotive dealerships, recognizing the sector’s significant wealth and vulnerability. Over the past few months, the industry has seen a notable rise in attacks, waking many dealers to the reality that they are prime targets for cybercriminals.
2. According to Holton, ransomware is still the most common and devastating attack. It can cripple a dealership by shutting down every digital system, from car sales to service operations, leaving businesses at a complete standstill. Many dealers have been caught off guard, initially believing their systems would recover quickly, only to face long periods of downtime.
3. Holton stresses that many dealers think they are secure but often lack proper monitoring or response systems. He urges dealerships to undergo regular third-party audits and ensure that a dedicated team actively monitors any cybersecurity tools in place. Without these measures, dealerships leave themselves open to major risks.
4. There’s a growing confusion among dealers who believe compliance with industry standards equals security. Holton clarifies that real cybersecurity requires building a strong network infrastructure, implementing robust endpoint protection, and ongoing monitoring. Compliance, while important, is just about documenting these efforts.
5. One of the most common ways ransomware infiltrates a dealership is through employees unknowingly clicking on malicious links or downloads. Holton emphasizes the importance of continuous training and awareness, especially with dealership employee turnover. He also notes that insider threats can pose an additional risk, making comprehensive employee vetting and training essential.
"Dealers get audits of their financials all the time, but nobody actually looks at what they're doing from an IT standpoint. So bring in a third party and have someone take a fresh look at it. Make sure that what you think you have covered is actually what you've got covered." – Brad Holton.
