OTA Update Slashes Driving Range, Ignites Legal Battle
A growing controversy in China over BYD over-the-air updates is rippling into Israel’s security establishment, as regulators confront a fundamental gap in connected vehicle cybersecurity rules. BYD owners who installed recent OTA updates discovered their vehicles’ advertised 500-kilometer WLTP range had been slashed to roughly 300 kilometers — a reduction owners described as a “battery lock.” The remote software change, reported by state-run China Media Group, materially reduced vehicle capabilities without clear prior disclosure.
The incident has amplified a broader debate in Israel over what automakers can change remotely and what data connected vehicles can collect and transmit. A class action lawsuit has been filed against BYD and Israeli importer Shlomo Motors, alleging that BYD vehicles collect driver data and transfer it abroad without proper customer consent, in violation of Israeli law. The case underscores a regulatory vacuum: Israel currently relies on European Euro 7 standards for automotive cybersecurity, but those rules were designed to prevent emissions tampering, not espionage or unauthorized data collection.
New Legislation Seeks to Close the Gap
In September 2025, the Israeli government published a memorandum amending the Automotive Services and Professions Licensing Law to address vehicle cybersecurity directly. Under the proposed rules, the Minister of Transportation would gain authority to define cybersecurity requirements for connected vehicles, including what manufacturers may change through OTA updates, what data vehicles may collect and transmit, what systems may be remotely disabled, and what role Israeli security authorities will play in oversight.
The stakes are high for Israel’s automotive market. Chinese EVs are already banned from military bases, yet many large tech companies — including some working with the defense establishment — provide Chinese EVs as company cars. Strict cybersecurity rules could create significant commercial barriers. Carasso Motors, importer of Chery vehicles, warned in its 2025 financial report that the proposed legislation “could harm the company’s operations and business results.” The Ministry of Transportation confirmed it is formulating professional guidelines while the legislative process moves through the Knesset, aiming to “establish appropriate mechanisms and improve protection against cyberattacks in the Israeli automotive market.”
The BYD battery lock incident demonstrates that OTA updates can directly affect core vehicle functions, from range to charging limits. As vehicles become increasingly software-defined, the question is not whether regulators will step in, but how quickly they can catch up to a connected vehicle market that is already years ahead of the rulebook.
Source: Calcalistech
