VicOne xNexus offers contextualized insights into complex attack paths

VicOne announced the xNexus next-generation vehicle security operations center (VSOC) platform.

The new solution integrates with VicOne’s in-vehicle VSOC sensor, leveraging a unique LLM approach to provide customized reporting to support VSOC teams. xNexus can provide product security incident response teams (PSIRTs) or engineering teams with actionable and contextualized attack intelligence based on the needs of different stakeholders.

The capabilities delivered by the new VicOne solution accelerate threat investigations, enable confident response to attacks and effectively reduce the burden of chasing inexplicable false alarms.

“Cloud-based VSOCs have become the conventional approach in the automotive industry to address dynamic cybersecurity requirements and regulatory pressures, but such an approach is inadequate for the threat landscape that is now emerging,” said Max Cheng, CEO of VicOne.

“VSOC teams must be able to understand and analyze attack paths across and beyond the cloud and throughout in-vehicle components and infrastructure. Our new xNexus solution has been engineered specifically to deliver contextualized insights, to discern malicious attacks from suspicious anomalies and to ensure robust protection in the new world of SDVs (software-defined vehicles). xNexus effectively enables automotive VSOC teams to discover a cybersecurity event’s ‘Patient Zero,” added Cheng.

Today’s VSOC platforms heavily rely on AI-powered detection only, often triggering alerts for all suspicious anomalies and overwhelming VSOC teams with late and irrelevant notifications. Also, their generic log collectors often produce unusable security logs lacking actionable intelligence.

xNexus, however, combines VSOC sensor and VicOne’s unique contextualized automotive threat intelligence to offer differentiated context around an attack path (the sequence of steps or methods that a hacker or some other actor might use to gain unauthorized access to a vehicle system, vehicle network or sensitive information).

This synergy reduces the burden of chasing inexplicable false alarms and empowers VSOC analysts to take that threat intelligence and marry it with their existing business processes to act accordingly and undertake effective risk remediation. With xNexus, the attack path is explained in a straightforward and easy-to-understand manner, enabling VSOC teams to be more effective and have the confidence to trace the origin of attacks, identify affected areas, discern their ultimate targets and implement proactive measures in less time.

This lessens the learning curve, and, with one click, the VSOC team can gain quick insights into real-world incidents, assess proximity to attacks globally and access detailed information on important factors such as attack vectors, paths, and tactics, techniques and procedures (TTPs) for comprehensive automotive cybersecurity insights.