“Regulatory frameworks, such as the EU’s NIS2 directive, now designate certain manufacturing domains — computers, electronics, machinery, motor vehicles, and transportation — as critical sectors, subject to enhanced cybersecurity requirements,” Hexagon’s Belal explains.
7. APT campaigns
Over the past year, nine out of 13 (69%) of APT campaigns obersved by Cyfirma targeted the manufacturing sector, peaking in September with sustained activity since, the company reports.
Key threat actors running these attacks include Chinese groups, Russian groups (FIN7, Gamaredon), Pakistani APT36, Iranian Fox Kitten, and the North Korean Lazarus Group. Attacks impacted 15 countries with significant manufacturing economies, including the US, UK, Japan, Taiwan, and India, with increased activity in Vietnam.
8. DDoS attacks
Netscout’s 1H24 DDoS Threat Intelligence report revealed that the manufacturing industry — and related sectors such as construction — are among the main targets for DDoS attacks today.
“As it continues to embrace digital technologies and extend its digital footprint, the manufacturing sector is becoming increasingly vulnerable to DDoS attacks,” says Richard Hummel, threat intelligence lead for Netscout. “Its vital contribution to the economy, along with its minimal tolerance for downtime and intricate digital landscapes, makes manufacturing — and related sectors — such an alluring target for threat actors.”