AFP suggests ‘proportionate’ response to fleet cybersecurity concerns

Most fleets face little threat from cybersecurity concerns around company vehicles, according to the Association of Fleet Professionals (AFP).

Citing press reports highlighting the potential for vehicles to be hacked and used for spying and espionage, AFP chair Paul Hollick said that potential issues would probably only affect a relatively small number of fleets.

He said: “Can vehicles equipped with multiple cameras, microphones, lidar and their own internet access potentially be used to gather information in a hostile manner? The answer to that is yes. However, we have no knowledge of this ever having happened and this is a subject where it is easy to stray into sensationalism.

“We have members who work in government, in critical infrastructure, in defence and in the military who have concerns in this area and take a range of precautions. For example, some have adopted guidance about where cars can be parked in relation to sensitive facilities they are visiting.

“To us, these actions seem sensible. These are sectors with a heightened awareness of cyber security and which have good reasons to be very careful. They will also tend to have rules governing when and where personal mobile phones can be used, and the risk presented by the latest cars is not dissimilar.”

Hollick added that for most other fleets, there was probably no need to take action.

He said: “Our feeling is that fleets should deal with this in a proportionate manner. If you are working in an industry where security is perceived as a less critical issue and are serving a similar customer base, then the possibilities of a problem arising are almost certainly slight.

“The concentration on EVs is probably unfair. Because they are new and tend to be among the most advanced vehicles on the road, electric cars and vans will be better equipped with the kinds of cameras and microphones that present risk, but there is no practical experience to suggest that they bring a higher level of jeopardy.”

Hollick added that several AFP members had extensive experience of vehicle cybersecurity and were happy to share their best practice ideas.

He said : “Among our membership, we have fleets operating into almost every sector of UK government and industry, and many of them have been considering this issue for several years. They are a valuable source of advice and help and crucially, can offer support on both assessing risk and the appropriate precautions to take.”