A new report from Halcyon’s Ransomware Research Center finds ransomware attacks now account for 44% of all reported cyber incidents in the automotive industry after more than doubling in frequency last year.

The report lists numerous high-profile examples, including a three-week shutdown of Jaguar Land Rover’s UK operations, the hacking of Chinese vehicles sold in Russia, and a series of attacks on parts suppliers in Japan, Italy and Australia.

Authors say the auto industry’s rapid adoption of AI, connected, cloud and supplier technology has made it a “lucrative” target for increasingly highly organized criminals.

“Well-resourced criminal groups, including BlackSuit, Everest, Qilin, Akira and Scattered Spider, are targeting the sector through Ransomware-as-a-Service (RaaS) operations, using AI-enabled tools, established infrastructure, and a combination of data theft and encryption to maximize pressure on victims.”

Read the full report at Halcyon