A new study released by cyber-physical systems protection company Claroty reveals that an astonishing 75% of survey respondents have experienced a ransomware attack in the past year. This study analyzes responses from 1,100 global independent security IT and OT professionals working in the critical infrastructure sector, providing a detailed look at the challenges they face throughout the year, the impact on their OT security programs, and their ongoing priorities. I analyzed it.
This research highlights that attack trends are evolving and that the impact on OT environments closely aligns with the impact on IT departments. When compared to monitoring results from two years ago, we see a significant 10% increase in targeted attacks combining IT and OT. Currently, 21% of cyberattack incidents only affect his IT department, but now that number has increased by 37%, causing disruption to both IT and OT departments. This development represents an expanded attack surface and raises further risk concerns related to IT/OT integration.
Not only is the operational impact of ransomware increasing, but there is also a worrying and persistent economic burden. Of the 75% of respondents whose organization suffered a cyber attack in this year, an overwhelming 69% paid a ransom to mitigate the threat. Highlighting the financial impact of these incidents, more than half (54%) of those who responded to ransom demands reported financial losses in excess of $100,000. Perhaps in response to these financial losses, cyber insurance has grown in popularity, with up to 80% of organizations now carrying insurance. Furthermore, approximately half (49%) of these companies chose to obtain compensation of more than $500,000 for her.
The increasing integration of new technologies within the OT environment further increases the stress and economic costs of dealing with growing threats. The report revealed that 61% of survey respondents currently utilize generative AI-based security tools. A worrying fact is that almost half (47%) admit that its use increases their security concerns.
To address these turbulent challenges, governments recognize the urgent need for industry regulation and standards. These efforts are now driving OT security priorities and investments. The TSA Security Directive influences 45% of respondents’ organizational security priorities and investments, followed by CDM DEFEND at 39% and ISA/IEC-62443 at 37%.
Despite these challenges, Claroti CEO Yaniv Vardi sees opportunity. “Our research shows that there is clearly no shortage of challenges facing OT security professionals,” he said Vardi. “But we also see that there is tremendous opportunity and ambition to mature security postures across industrial environments.”
The potential for improvement and progress is evident in risk assessment and vulnerability management, and network segmentation practices. Even as the integration of new technologies such as generative AI raises concerns, organizations are looking to proactively defend their cyber-physical systems.