Operational Technology (OT) is a key part of many industries in our day-to-day lives, but has historically been underserved by cybersecurity tools and concepts. That trend seems to be changing, as a growing spotlight on OT cyberattacks and defense mechanisms has led to higher awareness of OT security needs along with more options to solve those problems. Here’s Corsha’s view on some reports and findings that you should be keeping in mind into 2025.
1. OT Attacks are frequent and costly
Palo Alto’s State of OT Security Report 2024 is chock full of great information, but this statistic caught our eye:
“Almost 70% of industrial organizations have experienced a cyberattack in the past year, and 1 out of 4 experienced a shutdown of operations as a result.”
These OT attacks cover a wide range from ransomware to insider threats to denial-of-service attacks. Operational System shutdowns can result in production loss, intellectual property theft, supply chain pollution, and reputational damage. The biggest takeaway from this knowledge is not doom-and-gloom, but rather that it’s a reality that you must defend against and plan for.
2. All industries are potential targets
Waterfall Security compiled some of the top OT attacks from 2024, which covered the following industries:
Cybercriminals will target anything and everything, so it’s crucial to understand that operational systems are not immune from cyberattacks. Even assuming that your OT environment is air-gapped and off-grid can be a mistake, as attackers find new and inventive ways to break in. Reviewing these attacks and how they happened can help you plan your own defenses and remediation.
3. OT Cybersecurity Spending has increased to meet the demand
“In a new report, global technology intelligence firm ABI Research forecasts that the OT cybersecurity market will grow from US $12.75 billion in 2023 to around US $21.6 billion by 2028, with an approximate Compound Annual Growth Rate (CAGR) of 9.2%.” - ABI Research
Many OT networks are digitizing and moving towards Industry 4.0, which is highlighting the need to increase budget around tooling and support for these networks by enterprises and utility companies. This is a great sign, as higher spend can lead to more opportunities to prevent cyberattacks and strengthen security teams.
4. Proactive threat detection and Zero Trust principles are on the rise
“The lesson of the past year is to focus more on proactive threat intelligence and very robust incident response plans. Organizations must zero in and adopt zero trust as the essential strategy to safeguard those sensitive industrial and operational environments.” - IndustrialCyber
Applying Zero Trust principles to OT systems has already been a focus of US military branches, but this trend appears to be gaining traction in other industries as well. Many assumptions are made in OT networks that perimeter security is the most important piece of cybersecurity, but the idea of zero trust means that all systems must constantly authenticate to prevent attackers from accessing systems once inside a network.
5. The convergence of Operational and Information Technology provides opportunities for cross-domain security
We’ve previously written that “While OT and IT infrastructure have traditionally operated in separate domains, there is an increasing trend towards convergence, driven by the adoption of technologies such as the Industrial Internet of Things (IIoT) and Industry 4.0 initiatives. This convergence seeks to leverage the benefits of IT, such as data analytics and connectivity, to enhance the efficiency and effectiveness of OT systems.”
The modernization of OT equipment is already crossing the OT-IT boundary, and that trend will continue in 2025 with the rise of AI tools in manufacturing and utilities. Look for solutions that are designed to cross this boundary so your security teams can develop a cohesive security plan that builds coverage across all critical infrastructure and operational systems. Embracing this convergence into the new year is key for your organization’s cybersecurity efforts.
Here’s to a cyber-secure 2025 everyone!
