Meet Trillium at InsureTech Connect 2018

The Trillium Team is headed next to Las Vegas for InsureTech Connect 2018 – the world’s largest gathering of insurance leaders and innovators. The event begins on October 2, so drop by Booth K-29. See you at the MGM Grand! Learn more about the event here.


The Urgent Need for Key Fob Cybersecurity

As Phoebe Wall Howard writes in her excellent Detroit Free Press article, car key fobs are extremely vulnerable to cyber-attacks.


“There’s technology out there that allows people to [walk up to a car and remotely open it],” said former Macomb County sheriff Mark Hackel. Mr. Hackel fell victim to a key fob hack this past May, when a criminal gained access to his vehicle and stole a pistol that was stored in the console. What’s more alarming is that car hackers can remotely start your car’s engine, and even extract your personal information by exploiting fundamental flaws in key fob and keyless entry technology.


These flaws are being exploited by bad actors who employ man-in-the-middle (MITM) and relay attacks – the two most common ways to take advantage of an unsecured key fob. Man-in-the-middle attacks involve a radio device that intercepts, clones, and replays communications between two endpoints. The ease with which car hackers can perform MITM attacks is being widely publicized, especially after researchers from the University of Birmingham and the German engineering firm Kasper & Oswald revealed that over 100 million Volkswagen vehicles have vulnerable keyless entry systems.


The other common method of compromising a key fob’s security is a relay attack, which is executed by detecting and amplifying the keyless entry system’s signal. Signal amplification can trick a vehicle into thinking the key fob is much closer than it actually is, triggering doors to open, starting the car’s engine, and enabling a car hacker to drive away without a trace. These are a significant sub-set of cyber-attacks that the automotive industry faces today. But, leaders in the cybersecurity industry are developing technologies to head off this threat.


“Trillium is developing end-to-end cybersecurity solutions that mitigate the risks of key fob vulnerabilities, and protect data generated by vehicles for its entire lifecycle,” said David Uze, President and CEO of Trillium Secure at the Auto-ISAC Cybersecurity Summit in Detroit.


As a Trusted Mobility Services provider, Trillium is developing technologies to protect drivers’ key fobs against MITM and relay attacks. Trillium secures data from its origin to its retirement for all mobility, transportation, and vehicle services. To learn more about how Trillium’s cybersecurity platform protects vulnerable data today and tomorrow, visit

Highlights from Mobile World Congress Americas 2018

Mobile World Congress Americas (MWCA), the world’s largest exhibitionfor the mobile industrytook place this year in Los Angeles between September 12-14. Last year’s show in San Francisco brought in around 22,000 attendees, and the organizers expect this year’s show to easily top that.


Trillium exhibited in the 4 Years From Now (4YFN) section, a specialized area that celebrates innovative startups whose technologies will impact the world in the near future. This program returned for a second year at #MWCA18, enabling startups, investors, corporations and public institutions to connect and launch new ventures together from all around the world.


“We met a broad spectrum of valuable partners and had the chance to hold in-depth conversations with representatives from wireless carriers and the investment community,” said David Uze, CEO of Trillium. “I communicated to the right audience about 5G and IoT vulnerabilities, and personally met with dozens of talented engineering recruits and seasoned business development candidates.”


The theme of this year’s event was “Imagine a Better Future,” and the bustling atmosphere of the exhibition floor reflected the optimism and excitement expressed by keynote speakers from AT&T, Verizon and Nokia. Sprint’s Executive Chairman Marcelo Claure headlined the event saying, “There are three reasons why 5G is a quantum step forward in connectivity performance: ultra-high speeds, ultra-low latency, and the Internet of Things for billions of devices. And there are many amazing use cases that will enable a number of consumer innovations.”


5G was one of the biggest talking points at the event, all over the exhibition floor, and in most keynote sessions, and it’s no surprise considering many different companies like Viavi Solutions and more are working on the testing and deployment of 5G as we’re approaching the hopeful release for 5G in major cities and locations. There were several interesting use cases of the new radio access technology on display at Innovation City, and the conference program featured over 400 speakers highlighting other topics such as artificial intelligence, IoT, cybersecurity, content and media, drones, blockchain, policy and regulation. Team Trillium engaged with a Tier-1 mobile operator about autonomous driving and V2X use cases as some of the key drivers of their 5G investments and network rollout.


It’s difficult to closely examine what happened at the mobile industry’s key event in Los Angeles without talking about Hollywood and the entertainment industry at-large. Entertainment is one of the leading drivers of the mobile telecom industry; moreover, content distributors such as Facebook, YouTube, Netflix and Amazon Prime already make up a gigantic part of mobile network traffic. With the U.S. set to lead the 5G revolution, the three largest mobile operators are already touting new mobile 5G networks as the foundation for video consumption everywhere.


While the potential benefits of nationwide 5G deployment dominated MWCA 2018, many representatives from the automotive, aerospace, maritime, and drone industries visited Trillium’s booth to learn more about its multi-layered cybersecurity platform and secure data lifecycle services.


“The amount of interest in our technology, from people of so many industries and backgrounds, really hit home how important data security is to every aspect of society,” said Kamel Ghali, field applications engineer at Trillium.


“The most exciting portion of MWCA for me was meeting with a representative from the Department of Homeland Security,” said Zoran Kehler, vice president and director of aerospace and defense programs at Trillium. “We learned a lot about DHS’ advanced research organizations and advanced research programs and discussed how Trillium can become involved in many more U.S. homeland security projects through DHS.”


There were also many MWCA attendees from the investment banking and public sector who gave their attention to Trillium’s holistic and multi-layered approach to protecting vehicles from cyber-attack and keeping private information confidential.


Dan Viza, vice president and director of strategy at Trillium added, “Our first participation at MWCA was a great success and a significant milestone for us to be selected to participate in the 4YFN exhibit which recognized Trillium as a disruptor in the cybersecurity space. We engaged with many new, high-quality contacts, including productive meetings with key players in the mobile industry and investment banks.”


After three full days manning the booth at MWCA, Team Trillium is headed next to the Automotive ISAC Summit in Detroit from September 25-26.

Engage with Trillium’s Director of Legal at Auto-ISAC’s Privacy Panel

Trillium’s Director of Legal, Brad Weissenberger, will be a panelist at the Automotive-ISAC Summit, a conference dedicated to sharing best practices for mitigating cybersecurity threats facing the auto industry. The panel is entitled “Legislative Impact on Information Sharing and Data Analytics,” and Mr. Weissenberger plans to elucidate start-ups’ ground-up approach to global data privacy compliance.

The panel will start at 10:30 AM on September 25, so secure a front-row seat to ask questions! The rest of the Trillium team will be managing booth #3 in the main hall until September 26. See you at the Motor City Casino in Detroit!

CEO David Uze is Charged and Ready for Hack Across America

Trillium Secure CEO David Uze is hitting the road again to raise awareness among ordinary drivers, students, and major players in the automotive industry about the clear and present danger of car hacking. He departs this morning from Trillium headquarters in Sunnyvale and is headed to Mobile World Congress in Los Angeles to run the company’s booth in Hall West (Stand W.224C).


Just this week, Wired reported that KU Leuven researchers recently discovered wide-open vulnerabilities in several high-end car makers’ key fobs. To address how cybersecurity technology and secure data services can be implemented to prevent these types of attacks, Mr. Uze will be driving cross-country in a Trillium-branded electric vehicle and making a series of stopovers at research institutions.


The first stopover for this phase of Hack Across America will be the University of California Los Angeles, where Mr. Uze will meet with members of the Engineering Society and encourage students to learn more about the booming automotive cybersecurity industry. He will also talk about recruitment opportunities and how talented, curious, and driven students can gain experience in entrepreneurship and hands-on technology development. During the engagement, Trillium engineers will introduce the company’s cloud-based PassGO Hacking Challenge and invite passionate students to test their white hat skills.


Check back regularly to see if David and his colleagues will be stopping by a university near you!

Meet Trillium at Mobile World Congress Americas

Be sure to catch Trillium at Mobile World Congress Americas on Sept. 12-14 in L.A.! David M. Uze, Dan Viza, and Zoran Kehler will be at the 4YFN Startup Event, so ask them about secure data services built on Trillium’s cybersecurity platform. Find us at Hall West Stand W.224C. To learn more, visit

Your Company’s EV Charging Station is a Prime Target for Car Hackers

Electric vehicle charging stations are the latest workplace perks used to attract the hottest engineering talent (are you the Tesla guy at your company?). But did you know that the charging port is one of the most vulnerable attack surfaces on your car?


A simple skimming device, similar to the ones used in ATM fraud, can easily be made and deployed on a charging station by a motivated attacker. When an unsuspecting employee plugs-in his or her electric vehicle and heads into the office, the skimming device can gain access to the private information stored on the electric vehicle’s onboard computers. This type of hacker exploit has been identified by cybersecurity experts as a weakness for charging providers.


Yaroslava Ryabova wrote an excellent article on the vast range of problems related to infrastructure cybersecurity due to industry players rushing unsecured charging stations to market. Some of your most private information can be viewed, modified or even deleted from your car’s in-vehicle network. In addition, an increasing number of cars are adding cell phone mirroring dashboards that enable drivers to project mobile content to the vehicle’s infotainment system. If a car hacker gained access to your infotainment system via the charging port, they could theoretically view your music playlist, frequently visited locations and, of course, your credit card information. Moreover, a chain of vulnerabilities could allow the car hacker to gain access to your company’s information from your Bluetooth connected company phone, including work-related emails, text messages, and stored files. Potential motives may include financial gain through a ransomware attack or to steal trade secrets.


The most horrific consequences of an electric vehicle hack could be tricking the car’s battery into thinking it has not been fully charged. Disabling the surge management system could trigger a powerful explosion causing significant damage to the car, the surrounding area, and its occupants.


Thankfully, Trillium’s engineering team has developed SecureIXS, one component of the company’s multi-layered cybersecurity solution that prevents would-be cyber-attackers from gaining access to your electric vehicle’s onboard computers. SecureIXS uses a firewall and machine learning algorithms to detect anomalous data patterns, such as an unauthorized request to access your private data while charging. Cutting-edge solutions like SecureIXS are a critical piece to the widespread adoption of electric vehicles and the nation-wide deployment of charging infrastructure.

Trillium Partners with University of Michigan’s TechLab at Mcity For AI Research to Secure Connected Cars

Trillium’s Lead Data Scientists Mentor U-M Students

On Technology Development and Entrepreneurship  

ANN ARBOR, MI – SEPTEMBER 4, 2018 – Trillium Secure, Inc. (Trillium), the leader in vehicle cybersecurity and secure data lifecycle management, has partnered with the University of Michigan’s TechLab at Mcity program, managed by the Center for Entrepreneurship, to conduct research on how AI can bolster a vehicle’s defenses against cyber-attack. Trillium’ s Director of Global Engineering, Mr. Ross Hirschi, will collaborate with TechLab at Mcity, a Company-in-Residence program for advanced mobility companies in the connected and autonomous vehicle (CAV) industry, by providing mentorship to a team of students from technical departments at the University of Michigan.


“We are thrilled to be working in partnership with TechLab at Mcity and to have access to the nation’s leading mobility research and test facility,” said David Uze, Founder and CEO of Trillium. “Collaboration with TechLab at Mcity will enhance Trillium’s mission to make connected and autonomous vehicles safe from cyber-attack.”


Ross Hirschi will spearhead the project to refine SecureIXS, Trillium’s intrusion detection and prevention system (IDPS). SecureIXS creates a protective firewall for each electronic control unit (ECU) by leveraging AI and machine learning to inspect behavioral level patterns and to detect anomalies in entire vehicle fleets. Another project goal is to mentor University of Michigan students on using IDPS’ deep learning capabilities to model normal data traffic, to prevent rogue messages from entering ECUs, and to validate Trillium’s AI solution at the incubator’s state-of-the-art facilities. SecureIXS is one component of Trillium’s multi-layered solution that prevents malicious cyber-attackers from tampering with vehicles’ mission-critical ECU.


“Partnering with Trillium gives TechLab students the unique opportunity to engage in entrepreneurship while applying classroom learning to practical technology development in the connected and autonomous mobility industry,” said Nick Moroz, Assistant Director of Entrepreneurial Practice at the Center for Entrepreneurship. “I’m confident that the results of this partnership will attract many driven, passionate, and talented students to the cybersecurity field.”



About Trillium Secure, Inc.

Trillium Secure keeps your connected and autonomous vehicles safe and your private information confidential through a cybersecurity platform as a subscription service. Trillium’s software products are used by automotive OEMs, aerospace and defense organizations, insurance companies and ride-share services to form a multi-layered defense against cyber-attacks. Trillium’s in-vehicle network protection, machine learning algorithms, secure over-the-air updates, and security operations center serve a critical component to the widespread adoption of connected and autonomous vehicles. Trillium R&D and operations centers are in Sunnyvale, Ann Arbor, Ho Chi Minh City and Tokyo. For more information visit and follow us on LinkedIn.


About TechLab at Mcity

TechLab at Mcity is a Company-in-Residence program (company-sponsored technical projects housed at Mcity and the Ann Arbor campus) for early-stage advanced mobility companies in the connected and autonomous vehicle (CAV) industry through the work of elite and technically-skilled students. The program pairs emerging transportation startups (Post-series A funding) with top-tier undergraduate students studying Engineering, Computer Science, and Data Analytics interested in tackling industry challenges defined by technical projects, with the goal of educating students through mentorship and immersive interaction with high-growth ventures. The program aims to develop a talent pipeline for the growing CAV industry, connecting students and company sponsors, leveraging the University of Michigan’s regional access to automotive and transportation industry legacies.



Press Contact: Kevin Em



Press Contact: Nick Moroz