The government’s decision to block multiple mobile applications allegedly misused to remotely interfere with the operation of certain electric vehicles has intensified the focus on automotive cybersecurity, coming barely a week after India proposed mandatory cybersecurity and software update requirements for connected vehicles. The development also follows Autocar Professional’s earlier report highlighting how third-party mobile applications could be misused to remotely disrupt electric rickshaws and low-speed electric two-wheelers while they were plying on public roads.
Authorities are now examining cybersecurity safeguards across the automotive ecosystem after the apps were allegedly used to interfere with vehicle operation through connected battery management systems. The latest development underscores the growing importance of securing vehicle software, wireless interfaces and connected functions as automobiles become increasingly software-driven.
The government has directed app stores to block several applications that were allegedly being misused to remotely affect the functioning of some electric vehicles, while also reviewing whether additional safeguards are needed to prevent similar incidents in the future. The review is expected to assess cybersecurity measures adopted across connected vehicle systems and supporting software.
PTI had earlier reported that the Ministry of Electronics and Information Technology (MeitY) had asked Google and Apple to remove seven battery management system (BMS) applications from their respective app stores after concerns that they were allegedly being misused to remotely interfere with the operation of certain electric vehicles.
The latest action comes soon after draft amendments to the Central Motor Vehicles Rules proposed mandatory compliance with automotive cybersecurity and software update management requirements for eligible connected vehicles. The proposed framework would require manufacturers to establish Cyber Security Management Systems (CSMS) and Software Update Management Systems (SUMS) as part of the vehicle approval process, bringing cybersecurity into the regulatory framework alongside traditional vehicle safety requirements.
While the recent incidents primarily involved electric two- and three-wheelers, the broader implications extend across the connected vehicle ecosystem. Modern vehicles increasingly rely on software, smartphone connectivity, Bluetooth, over-the-air updates and electronic control systems, making cybersecurity an integral component of vehicle safety.
Taken together, the proposed regulatory framework and the government’s latest action indicate that cybersecurity is rapidly becoming a mainstream automotive policy issue in India. As connected and software-defined vehicles become more prevalent, the industry is expected to place greater emphasis on secure software architecture, stronger authentication mechanisms and lifecycle cybersecurity management to protect vehicles from unauthorised digital access.