Cyberattacks on industrial systems surge as OT security risks escalate
Operational Technology (OT) systems are facing a growing wave of cyber threats. These attacks now pose risks as serious as those targeting traditional IT networks. New regulations and rising incidents have pushed organisations to rethink their security approach.
Over the past year, industrial organisations became the top target for ransomware. Between March 2024 and March 2025, they suffered 2,073 attacks—more than any other sector. Capital goods firms, especially in machinery, construction, and engineering, were hit the hardest.
OT systems control critical machinery and infrastructure, making them vital to the UK’s essential services. When these systems fail, production stops, supply chains break down, and public safety can be put at risk. The shift toward merging IT and OT networks has made industrial environments more vulnerable to cyber criminals. Regulators now treat OT security as a key part of cyber resilience rules. The Cybersecurity Act and updated sector guidance demand stricter governance and faster incident reporting. Companies running essential services must manage risks across both IT and OT—no exceptions.
The rise in OT attacks has forced a change in how organisations protect their systems. Security measures once reserved for IT must now extend to industrial networks. Failure to adapt could lead to costly disruptions, regulatory penalties, and threats to public infrastructure.
