Contact.

In general, all players who develop electronic-electrical components and systems around the vehicle are required to carry out a systematic risk assessment and the associated reduction of vulnerabilities and security weaknesses - most recently made very clear, for example, in regulatory terms with regard to UN R155 as well as the industry standard ISO/SAE 21434 and other regulations and standards.

Depending on the organization's own requirements, structures and processes for risk assessment, a sensible integration with the organization's own testing strategies must be realized. In general, it is recommended to perform proper penetration tests at least once a year. In addition, whenever a new system is introduced, software is updated or significant changes are made to technologies or processes, the associated testing should also be considered.

The expert teams of BreachLabz, highly qualified specialists in technical implementation of cybersecurity, see themselves as ethical hackers who simulate attacks and uncover vulnerabilities around vehicle systems. Based on our extensive experience in working with automotive industry players on the one hand and regulatory requirements and related emerging legislation in conjunction with new industry standards on the other hand, we offer a holistic service portfolio to integrate testing services into development projects as needed.

The carefully hand-picked members of our teams have professional academic backgrounds, many years of experience in cybersecurity, information security and IT, and a deep understanding of automotive-specific protocols and applications (CAN bus protocols, telematics, hardware hacking, automotive software architectures, etc.).

Each penetration testing project is tailored to the system to be tested and takes into account the given requirements and framework conditions of the client. We can be involved at an early stage (also with regard to higher-level testing strategies) in order to define the scope and orientations together in a meaningful way.

The "typical" penetration test is rarely found in the automotive industry, often our testing services include aspects from the areas of threat analysis and modeling, wireless and network testing, hardware reverse engineering, firmware analysis, CAN bus sniffing and fuzzing, infotainment system testing, testing of mobile applications, if they are related to the functions of the vehicle, and much more.

In the first meeting we will determine together with you which services we can offer for your project.

In addition to the technological know-how around the implementation of cybersecurity, it is our in-depth knowledge of classic and modern automotive technologies that enables us to realize target-oriented testing of complex automotive systems with a profound understanding. Furthermore, we work in a combination of manual and automated test procedures in a particularly efficient way. And of course, all our work is subject to the highest standards of confidentiality and non-disclosure. Last but not least, as a spin-off company, we are closely linked to CYRES Consulting, a leading global automotive cybersecurity consultancy - in case further support is needed.

Use the contact form or send us an email to start a qualified technical exchange with our colleagues about your testing project. We are characterized by our speed in organizing and providing the information you need to make well-founded decisions for an assignment. Give it a try!