- Some European original equipment manufacturers (OEMs) have adopted FlexRay as a control network that can realize the fundamental functions of a vehicle. However, studies regarding FlexRay security are scarce. We herein highlight the vulnerability of FlexRay revealed from the results of experiments conducted on real FlexRay networks. Consequently, we clarify the conditions under which attackers can masquerade as legitimate electronic control units and transmit spoofed FlexRay frames. To our knowledge, this is the first study that demonstrates a consumer vehicle being controlled by spoofing attacks in static segments. Furthermore, we discuss countermeasures against spoofing attacks on FlexRay. In particular, we discuss the intrusion detection and prevention system (IDPS), which detects spoofing attacks and mitigates the risk of malicious control of a vehicle until recovery. Furthermore, we conduct experiments to verify the feasibility of the proposed IDPSs in disabling spoofed frames.