The CBT News data point that should be getting more attention: ransomware attacks on the automotive industry more than doubled in 2025 and accounted for 44 percent of all cyber incidents in the sector. Suppliers are identified as the weakest link. That framing lands differently when you remember that CDK going down in 2024 cost dealerships an estimated $1 billion in losses across roughly two weeks of operational disruption. The supplier vulnerability is not theoretical. A Tier 2 or Tier 3 shop with outdated network infrastructure and no incident response plan is a vector into every OEM and dealer they touch through shared data connections and API integrations. If you are a vendor selling into the dealer or OEM space right now and your security posture is not part of your sales conversation, your prospective customers’ IT and compliance teams are about to make it one. The FTC’s focus on dealer data practices is a parallel signal that regulators are watching how automotive businesses handle sensitive consumer and operational information.