Blogs
March 18, 2026 / April 8, 2026 by Peter Sherek
If you want to understand where the next wave of cyber risk is hitting dealerships, powersports stores, and RV centers, look past the showroom and straight into the service lane. Upstream’s 2026 Global Automotive & Smart Mobility Cybersecurity Report makes it clear: attackers are no longer just targeting vehicles or OEM cloud platforms—they’re exploiting every […]
Read more »
February 25, 2026 / April 8, 2026 by Peter Sherek
Dealerships increasingly rely on website banners to manage customer tracking preferences—but recent lawsuits show that many banners don’t actually do what they claim. And regulators, especially in California, are making it clear: if your website says it honors opt‑out choices, it must do so in practice. A recent class action against the ATP Tour illustrates […]
February 18, 2026 / April 8, 2026 by Peter Sherek
If you thought phishing was just about shady emails, think again. The latest wave of cyberattacks is hitting retailers through their ears—literally. It’s called vishing (voice phishing), and it’s been used to trick staff into handing over access to CRM systems like Salesforce. Even tech giants like Allianz Life, Google and Cisco have been caught […]
January 14, 2026 / April 8, 2026 by Peter Sherek
As of January 1, 2026, the Kentucky Consumer Data Protection Act (KCDPA) is officially in force, adding to the growing list of state-specific privacy laws. This act brings new expectations for any dealership that sells to or maintains a business relationship with Kentucky consumers. The law gives residents important rights over their personal data, including […]
December 3, 2025 / April 8, 2026 by Peter Sherek
700Credit recently announced that they were the victims of a hack that exposed personally Identifiable Information (PII). This event highlights the urgent need for dealerships to strengthen their data protection practices. You can read more about the breach here and here. Even if your store has not been directly impacted, this event underscores the importance […]
November 12, 2025 / April 8, 2026 by Peter Sherek
In today’s digital landscape, senior executives aren’t just leading organizations; they’re becoming prime targets. For auto, RV, and powersport dealerships, where leadership often holds direct access to financial systems, customer data, and vendor relationships, the risk is especially acute. But this threat extends far beyond the showroom floor. Any organization with high-profile executives and valuable […]
November 12, 2025 / April 9, 2026 by Peter Sherek
Watch this video where our Chief Compliance Officer, Matt Vatter, discusses the risks dealers face and what Accelerate2Compliance does to help them address these risks and better protect their customers’ data and themselves.
October 14, 2025 / April 8, 2026 by Peter Sherek
In August 2025, Motility Software Solutions, a widely used dealer management system (DMS) provider for powersport and RV dealerships, suffered a significant ransomware attack that compromised the personal data of over 766,000 individuals. The breach exposed sensitive information, including names, birthdates, Social Security numbers, and driver’s license details. Although Motility has restored its systems and […]
October 7, 2025 / April 8, 2026 by Peter Sherek
If you’re running a dealership, you’ve probably got enough on your plate: inventory, customer service, compliance, driving foot traffic, and keeping your digital tools up to date. But there’s a new kind of threat creeping into the industry, and it’s not just targeting the big guys anymore. Meet the emerging cybercrime collectives like Scattered Spider […]
September 23, 2025 / April 8, 2026 by Peter Sherek
Salt Typhoon, Scattered Spider, Shiny Hunter, and Silent Starling – sounds like code names from a spy novel, right? These are groups that are actively trying to infiltrate your digital systems and steal your data. Groups like these have compromised hospital systems, payroll platforms, cloud vendors, automobile OEMs, and even cybersecurity firms. Your industry is […]
July 31, 2025 / April 8, 2026 by Peter Sherek
Most dealerships rely on Customer Relationship Management (CRM) tools to support growth. These systems help personalize outreach, guide marketing strategies, and build long-term relationships. CRM data includes names, contact info, purchase history, service records, and behavioral trends—valuable insights that help businesses thrive. But here’s the catch: that same data is just as valuable to cybercriminals. […]
June 19, 2025 / April 8, 2026 by Peter Sherek
The Federal Trade Commission (FTC) recently reiterated its commitment to enforcing the Safeguards Rule, which requires dealerships and other financial institutions to develop, implement, and maintain a comprehensive information security program. As of June 16, 2025, the FTC has issued updated guidance (see the FAQ here) to remind organizations that compliance is not optional. A […]
June 10, 2025 / April 8, 2026 by Peter Sherek
Dealerships face significant security vulnerabilities, operational inefficiencies, and compliance risks if they do not act to upgrade their computers before October 2025. As the deadline for Windows 10 support looms closer, dealerships that have yet to make the switch to Windows 11 are running out of time. The Countdown to Windows 10 End-of-Support: Why Dealerships […]
April 22, 2025 / April 8, 2026 by Peter Sherek
The issue of personal digital privacy is an increasing concern to consumers. As federal legislators struggle with federal legislation to regulate how businesses must handle consumer privacy, states across the U.S. are stepping up to protect consumer privacy. These laws aim to give individuals greater control over their personal data while imposing stricter compliance requirements […]
April 17, 2025 / April 8, 2026 by Peter Sherek
As dealerships across the automotive, powersport, marine, and RV sectors rely more on technology, they’ve become prime targets for cybercriminals. The reappearance of the Chinese hacker group FamousSparrow and recent ransomware attacks highlight the urgent need for stronger cybersecurity. FamousSparrow Resurfaces The China-linked hacker group FamousSparrow has returned with upgraded tools like its backdoor SparrowDoor […]
March 24, 2025 / April 8, 2026 by Peter Sherek
On March 12, 2025, the California Privacy Protection Agency (CPPA) announced that it reached a settlement with the Honda Motor Company for violations of the California Consumer Privacy Act after an almost two-year investigation. The investigation revealed that Honda committed four primary violations. Understanding the nature of these investigations helps dealerships to look for similar […]
March 12, 2025 / April 8, 2026 by Peter Sherek
Dealerships must rely on third-party vendors to provide essential services, products, or support. While these partnerships can bring numerous benefits, they also introduce potential risks that can impact a dealership’s operations, reputation, and security. This is where third-party/vendor risk management (VRM) comes into play. Dealerships depend on a variety of dealer management applications for critical […]
February 19, 2025 / April 8, 2026 by Peter Sherek
We often hear feedback from our clients that they do not see value in providing information security training for staff that do not work with customers on a regular basis. Although on the surface, this may make sense, a deeper look might reveal why this could be introducing vulnerabilities to your information systems. Digital systems […]
February 10, 2025 / April 8, 2026 by Peter Sherek
On January 27, 2025, the U.S. Court of Appeals for the Fifth Circuit determined that the FTC did not follow proper procedure when it propagated the CARS Rule. When this announcement came out, dealers reached out and asked if they still needed to comply with the Safeguard rules. Even though the FTC is the regulatory […]
January 27, 2025 / April 8, 2026 by Peter Sherek
We welcome all attending dealers to join us for a Tech Talk at the digital and tech sector at the AIMExpo 2/5/25 at 10:00am as we present how to build and exercise a strong incident response plan. An incident response plan is a vital component of an organization’s risk management strategy, ensuring they are […]
Tagged
