IDS-INDATA’s chief information security officer, Ryan Cooke, walks readers through the latest cybercrime statistics and advises on defence strategy.
A new analysis of the cyber threat landscape in the manufacturing industry by IDS-INDATA reveals a 50 per cent increase in supply chain attacks, making them the fastest-growing cyber threat to the industry. The analysis also highlights rises in ransomware (23.5 per cent), malware (11.1 per cent) and social engineering (8.6 per cent) attacks, underscoring the vulnerabilities in ageing OT-IT networks.
Ransomware attacks are becoming more sophisticated, with cybercriminals utilising AI to create malware that can adapt in real time to avoid detection. According to the analysis ransomware threats impacted 34 per cent of businesses in 2023, which rose to 42 per cent in 2024.
AI-powered malware attacks can learn from network environments and adapt to exploit vulnerabilities within OT-IT networks, stealing sensitive data, disrupting productivity and compromising system integrity.
Social engineering tactics, including phishing and impersonation, affected over a third of businesses in 2024. Due to AI-driven deepfakes and automated scams, these tactics have become increasingly influential. Cybercriminals can create highly personalised attacks that exploit human error, one of the weakest links in manufacturing cybersecurity. This highlights the importance of ongoing training and awareness for manufacturers.
AI has enhanced spear-phishing campaigns, enabling cybercriminals to customise emails for individuals using personal information obtained from public sources. The 4.8 per cent increase in targeted phishing incidents highlights the ongoing prevalence of these campaigns against the manufacturing sector. Spear phishing remains the primary threat affecting 88 per cent of businesses.
This trend likely stems from manufacturers’ reliance on email communication for operational logistics and coordination.
IDS-INDATA’s chief information security officer, Ryan Cooke, said: “We advocate for regular system checks to stay ahead of evolving threats. IDS-INDATA’s testing and risk management services are designed to assess vulnerabilities in OT-IT networks and fortify defences against the growing tide of cyber threats, from ransomware to AI-powered malware.”
Immediate steps include: assess and update legacy systems to minimise vulnerabilities; strengthen third-party risk management; implement advanced threat detection and response strategies; and regularly conduct cybersecurity training to recognise phishing and social engineering tactics.