As vehicles transform into complex cyber-physical systems within Intelligent Transportation Systems (ITS), automotive cybersecurity has become a foundational pillar in securing safe, reliable, and trustworthy transportation. This paper examines cybersecurity challenges in connected and autonomous vehicles (CAVs), focusing on Vehicle-to-Everything (V2X) communications technologies, including Vehicle-to-Vehicle (V2V), Vehicle-to-Infrastructure (V2I), and Vehicle-to-Pedestrian (V2P) and critical systems like electronic control units (ECUs), battery management units (BMUs), and sensor fusion modules. Key vulnerabilities, such as remote hacking, denial-of-service (DoS) attacks, malware injection, and data breaches, threaten vehicle functionality, passenger safety, and privacy.
Key protection mechanisms, including encryption, intrusion detection systems (IDS), cryptographic protocols, secure over-the-air (OTA) updates, and Advanced Artificial Intelligence (AI) and Machine Learning (ML) algorithms enhance threat detection, anomaly monitoring, and adaptive security responses. Additionally, emerging blockchain-based security frameworks offer decentralized solutions for data integrity and secure transactions. For electric vehicles (EVs), lightweight and energy-efficient cybersecurity solutions are critical to securing EV-specific architectures. Global standardization efforts, including ISO/SAE 21434 and UN Regulation No. 155, are shaping industry best practices, ensuring interoperability and scalable security frameworks for next-generation vehicles. This review synthesizes research advancements from 2001 to 2024, identifying key challenges such as real-time threat mitigation, scalability, and adaptive security architectures. The paper aims to provide valuable insights for researchers, engineers, and policymakers, fostering the development of secure, resilient, and sustainable automotive ecosystems in an increasingly digitized transportation network.