More Prevalent, Intrusive Ransomware Attacks Hit OT/OCS

Operational technology and industrial control systems infrastructure have been targeted by 60% more ransomware operations last year, while ransomware attacks aimed at industrial entities rose by 87%, compared with 2023, according to SC Media.

More than 1,100 manufacturing firms across over two dozen subsectors have also been subjected to 69% of all ransomware intrusions last year, a report from Dragos revealed.

Nine of 23 ransomware gangs monitored by the OT cybersecurity provider launched attacks last year, four of which have gained ICS Cyber Kill Chain Stage 2 capabilities, which Heath Renfrow, co-founder and CISO at Fenix24, said allowed industrial process-altering intrusions following initial access and reconnaissance.

Additional findings showed the emergence of the new Bauxite and Graphite OT threat operations. While the CyberAv3ngers-linked Bauxite has targeted industrial organizations and devices worldwide in several campaigns, the APT28-linked Graphite primarily compromised oil and gas, energy, government, and logistics entities, said the Dragos report.