2025年联网汽车网络安全指数研究报告

RunSafe Security’s2025 CONNECTED CARCyber Safety & Security Index Findings Report Consumers increasingly understand and are concernedabout vulnerabilities in their vehicles, which directlyimpacts purchasing behavior and brand loyalty. RunSafeSecurity.com Table of Contents 03Executive Summary 04Introduction05Key Findings & Insights: The Escalating Threat LandscapeConsumer Awareness of Cyberattacks Is Outpacing Industry ResponsePhysical Safety Drives ConcernsThe Over-the-Air Update ParadoxThird-Party Technology – Especially AI – Creating Software Supply Chain AnxietyConsumers Hold Automakers Responsible for AttacksCybersecurity Drives Purchase Decisions in the New Competitive Battlefield11Industry Implications and RecommendationsFor Automotive ManufacturersFor Suppliers and Technology CompaniesFor the Automotive Ecosystem13Conclusion The automotive industry stands at a cybersecurity crossroads. Connectedcars have evolved from mechanical transportation into software-definedcomputers on wheels, creating unprecedented convenience alongsideequally unprecedented risk. •Supply chain anxiety:77% recognize third-party components ascybersecurity risks, with 83% demanding transparency aboutsoftware origins •Purchase power:87% say strong cybersecurity influences buyingdecisions, with 35% willing to pay premium prices for enhanced cyberprotection on their car Modern vehicles contain over 100 million lines of code, which is more thanmost fighter jets, yet lack the cybersecurity rigor needed to keep them safe.RunSafe Security’s2025 Connected Car Cyber Safety & Security Indexreveals that consumers increasingly understand and are concerned aboutvulnerabilities in their vehicles. However, the automotive industry has yet torespond with the transparency and security measures drivers now desire. •Avoidance behaviors:70% would consider buying older, less connectedvehicles to reduce cyber risk These findings demonstrate that connected car cybersecurity has evolvedfrom a technical concern to a fundamental consumer expectation thatdirectly impacts purchasing behavior, brand loyalty, and market positioning. In a survey of2,000 connected car owners across the U.S., UK, andGermany,our findings reveal an automotive cybersecurity landscape whereconsumer awareness has outpaced industry response. Cybersecurity hasbecome a purchase driver that can make or break brand loyalty, yet mostautomakers are failing to capitalize on this market opportunity. Key Findings: •Safety trumps privacy:79% of drivers prioritize physical safety fromcyberattacks on their vehicles over protecting personal data at risk ontheir car, understanding that automotive cyber threats can belife-and-death •The confidence gap:While 65% believe remote hacking is possible, only19% feel “very confident” their vehicle is protected Introduction Cars have become computers. By 2030, theUN Economic Commission forEurope(UNECE) projects vehicles will contain roughly 300 million lines ofcode—significantly more than a modern fighter jet (25 million) or passengeraircraft (15 million). While these innovations enhance convenience, fromover-the-air updates to smartphone integration, they’ve also created attacksurfaces that cybercriminals are actively exploiting. The automotive industry faces an unprecedented cybersecurity challenge.A vulnerable connected car represents a mobile cyberweapon capable ofcausing mass casualties, while compromised fleet management systemscan simultaneously affect thousands of vehicles. The scale of the threatis expanding: in 2025, there will be over400 million connected carsinoperation, and cybersecurity incidents affecting the automotive sectormorethan tripledin 2024, with 60% of attacks impacting thousands to millions ofvehicles simultaneously. The threats to connected cars, and especially the next generation ofSoftware Defined Vehicles (SDVs), are not hypothetical. In 2015, researchersremotely hijacked a Jeep Cherokee’s braking, steering, and accelerationsystems from 10 miles away via cellular connection—affecting 1.4 millionvehicles and triggering thelargest automotive cybersecurity recall in history. Against this backdrop, RunSafe Security commissioned a survey in August2025 to understand how consumers perceive connected car cybersecurityrisks and how these perceptions influence purchasing behavior. The resultsreveal an industry at an inflection point, where cybersecurity excellence canserve as a powerful competitive differentiator, but only for companies willingto embrace transparency and invest in comprehensive protection. More recently, in 2024, researchers discovered vulnerabilities inKia’s webportalthat enabled them to control any internet-connected Kia vehiclemanufactured after 2013 remotely. Meanwhile, other teams successfullyhijacked and tracked specificSubaru models. Key Findings & Insights:The Escalating Threat Landscape This skepticism appears well-founded when drivers compare their vehiclesto other connected devices. Only