Fifty percent of all ransomware attacks are against manufacturers, research
Manufacturers are disproportionately likely to suffer from ransomware attacks according to researchers at Orange Cyberdefense.
Based on data derived from the company's SOCs around the world, Orange Cyberdefense's Security Navigator 2021 report summarises the security incidents suffered by its customers in different sectors and size bands.
Some 18 per cent of organisations studied are in the manufacturing sector, yet they suffered 30 per cent of all confirmed incidents over the past year and a half of all ransomware attacks, said head of cybersecurity research Charl van der Walt during an online roundtable this week.
"Manufacturing is very complex as an ecosystem, and there's a dichotomy between IT and traditional manufacturing mindsets," he said.
"There are very different realities that are converging, and that convergence isn't just about marrying technologies, it's about marrying people who come from different worlds and think about the world in different ways. I think that's opening that industry up to high levels of vulnerability."
Van der Walt contrasted the manufacturing sector with finance, which is an obvious target for cyber criminals, but much less likely to suffer an attack from ransomware or other types of malware.
"I don't think it's because manufacturers are being targeted more. I think it's simply because they're not as resilient," he said.
"Finance is actually quite resilient, quite mature, and the attackers have largely given up on traditional network-based attacks and are focusing more on social engineering attacks."
Unlike the scatter gun of early ransomware like NotPetya, modern attacks tend to encrypt data at the end of a long process, which includes breaching the network, working around the infrastructure, stealing valuable information and working out ..