search.noResults

search.searching

saml.title
dataCollection.invalidEmail
note.createNoteMessage

search.noResults

search.searching

orderForm.title

orderForm.productCode
orderForm.description
orderForm.quantity
orderForm.itemPrice
orderForm.price
orderForm.totalPrice
orderForm.deliveryDetails.billingAddress
orderForm.deliveryDetails.deliveryAddress
orderForm.noItems
COMMUNICATIONS & NETWORKS


Javvid Malik, lead security awareness at KnowBe4, discusses the current cyber threat landscape in manufacturing and explains how proactive security measures can combat the risks


he manufacturing sector faces an unprecedented surge in cyber threats with attack volumes climbing by nearly 24% in 2024 alone, making manufacturers prime targets for increasingly sophisticated attacks like ransomware and phishing campaigns. This rise in cyber activity not only threatens individual companies but also destabilises entire supply chains, as interconnected systems become easy entry points for attackers. In light of these vulnerabilities, manufacturers must adopt rigorous security measures, emphasising employee training and multi-layered defences, to protect operations. The cyber threat landscape for manufacturing has grown significantly more hazardous as attackers exploit sector- specific vulnerabilities. Phishing remains the frequent attack vector, capitalising on workforce access to critical systems and often leading to ransomware attacks. These attacks can paralyse operations, with companies facing substantial ransom demands, high recovery costs, or extended production delays.


T


In 2024, ransomware demands have surged in manufacturing, exposing the extreme vulnerability of operational technology (OT) environments. As manufacturers increasingly implement Internet of Things (IoT) and OT devices to streamline production, the attack surface expands, creating multiple entry points for cybercriminals. These systems, crucial to supply chains and production, pose distinct security challenges, as they often lack the same protections as traditional IT networks. Sectors like aerospace, automotive, and chemicals are especially vulnerable due to the complexity and value of their data. A breach in these industries could compromise sensitive intellectual property and disrupt entire supply chains. With these escalating threats, implementing layered, proactive defences, such as network segmentation and employee training, alongside enhanced incident response planning, is essential to


6 NOVEMBER 2024 | PROCESS & CONTROL ENSURING A MORE SECURE LANDSCAPE


minimise the impact of cyber incidents. Interconnected supply chains in manufacturing bring considerable efficiency but also introduce critical cybersecurity risks. The growing complexity of these networks means that a single vulnerability at one point in the supply chain can expose numerous downstream companies to potential breaches. Many manufacturers rely heavily on third-party vendors and partners for various components and services, making them vulnerable if even one of these entities is compromised. Attackers increasingly leverage these connections, targeting weaker links within supply chains to gain entry into otherwise secure organisations. A compromised supplier can have far- reaching consequences, allowing attackers to infiltrate key operational systems, disrupt production, or steal sensitive data across multiple firms. In the worst cases, this leads to data breaches impacting proprietary designs or operational blueprints, which are especially sensitive in sectors like aerospace and automotive manufacturing.


As cyber threats escalate, manufacturers must prioritise robust security strategies. Employee training is essential, including not only office workers but also Operational Technology (OT) personnel and manufacturing floor employees who may not use email frequently. Regular awareness programmes equip everyone to spot phishing attempts and social engineering tactics, which may come via phone or in-person. By fostering a security-conscious culture, manufacturers can reduce vulnerabilities from human error, such as outdated software, mishandling sensitive data, or using unapproved communication channels. A multi-layered security approach is essential, incorporating firewalls, intrusion detection systems, and endpoint protection.


Network segmentation adds another layer of defence, limiting attackers’ lateral movement within networks. Adopting zero-trust principles further enhances security by requiring verification for all access requests, regardless of origin.


Additionally, rigorous vetting and ongoing security assessments of supply chain partners help mitigate risks. Strong authentication and real-time monitoring across supply chain networks can further protect against vulnerabilities. Setting clear cybersecurity expectations for partners and conducting regular audits builds a resilient supply chain. Incident response planning is also critical. Companies should create and regularly test response protocols to enable swift action when threats are detected. Defined roles, communication strategies, and recovery plans support rapid restoration of operations. Finally, collaboration within the industry to share threat intelligence strengthens collective defences. Staying informed on emerging threats allows manufacturers to adapt and maintain resilience. Investing in cybersecurity protects not only individual companies but also supports the manufacturing sector’s integrity. The manufacturing sector stands at a critical crossroads, facing a surge in cyber threats that challenge its operational integrity and supply chain resilience. Proactive security measures are essential in combating these risks. By fostering a culture of security awareness and collaboration with industry partners, manufacturers can better safeguard their assets and data. Investing in cybersecurity not only protects individual organisations but also the entire industry against future threats, ensuring a more secure and resilient manufacturing landscape.


KnowBe4 knowbe4.com


Page 1  |  Page 2  |  Page 3  |  Page 4  |  Page 5  |  Page 6  |  Page 7  |  Page 8  |  Page 9  |  Page 10  |  Page 11  |  Page 12  |  Page 13  |  Page 14  |  Page 15  |  Page 16  |  Page 17  |  Page 18  |  Page 19  |  Page 20  |  Page 21  |  Page 22  |  Page 23  |  Page 24  |  Page 25  |  Page 26  |  Page 27  |  Page 28  |  Page 29  |  Page 30  |  Page 31  |  Page 32  |  Page 33  |  Page 34  |  Page 35  |  Page 36  |  Page 37  |  Page 38  |  Page 39  |  Page 40  |  Page 41  |  Page 42  |  Page 43  |  Page 44  |  Page 45  |  Page 46  |  Page 47  |  Page 48