Digital connectivity is reshaping European manufacturing, driving both efficiency and innovation. However, this shift has also created a complex and vulnerable cyber threat landscape, making manufacturing the most targeted industry for cyberattacks for the past four years.
Connected systems and legacy infrastructure are colliding, expanding the attack surface and exposing manufacturers to increased risks.
The Perfect Storm of Vulnerabilities
The "Industry 4.0" revolution has brought smart factories with enhanced automation, but it has also broadened the attack surface. Technological investment in manufacturing increased significantly in 2024, but this progress came with a price: an increase in exposure to cyber threats. Several key challenges make the manufacturing sector particularly susceptible.
Firstly, the convergence of operational technology (OT) and information technology (IT). OT systems prioritise availability and safety, while IT systems focus on data confidentiality. These different priorities often lead to security vulnerabilities, especially when integrating legacy OT systems that lack modern cybersecurity measures. Replacing these systems is costly and complex, leaving many manufacturers dependent on outdated, vulnerable equipment.
Furthermore, manufacturing is embedded in global supply chains. These intersect with entirely different sectors like energy, transportation, and technology, significantly expanding the attack surface. A single weak link, such as a third-party vendor or logistics partner, can become an entry point for attackers. In the UK, the National Cyber Security Centre (NCSC) has repeatedly warned about nation-state actors targeting weak links within engineering and industrial supply chains, many of which are directly tied to manufacturing. The World Economic Forum's survey also ranked supply chain attacks as a top cyber risk for manufacturing organisations in both 2023 and 2024, highlighting the persistent nature of this threat.
Manufacturers store a wealth of high-value intellectual property, from proprietary designs to sensitive research and development data. These assets are highly attractive to cybercriminals and nation-state actors, who seek to steal, ransom, or gain a competitive edge. This makes the entire manufacturing supply chain a prime target.
Key Sector Insights
Different manufacturing sub-sectors face unique challenges. In automotive manufacturing, the focus on securing ‘connected’ vehicles (vehicles that are able to communicate with other vehicles, the internet, and external devices) can overshadow vulnerabilities in the factory floor's legacy equipment. Food and beverage manufacturing often prioritises other business concerns such as operational efficiency, food safety and contamination prevention over and above cybersecurity leaving them unprepared for attacks. In addition, pharmaceutical manufacturing manages highly sensitive data such as sensitive health records and research, making them a target for ransomware and espionage. The healthcare manufacturing sector also ranks insider threats as their second most concerning cyber threat, citing negligence, misuse or malicious intent as their biggest worries.
Persistent Threats
Ransomware remains a dominant threat, accounting for nearly half of all breaches in manufacturing. Social engineering and phishing are also significant, acting as the initial attack vectors in breaches such as stolen credentials, privilege misuse, and malware installation to name a few. The human element remains a critical vulnerability, with employees often falling prey to phishing attempts.
Barriers to Investment
Despite escalating cyber threats and widespread attacks on European manufacturers, many organisations remain hesitant to invest adequately in cybersecurity. This resistance stems from several factors: a significant lack of awareness and expertise within the typically non-office-centric manufacturing workforce, coupled with a shortage of skilled cybersecurity professionals. Additionally, heavy reliance on costly and disruption-prone legacy OT systems, the severe financial impact of downtime in production-driven environments, and the constant balancing act with other urgent operational demands often push cybersecurity to a lower priority.
Addressing the Challenge
To secure manufacturing's digital future, organisations need to adopt a comprehensive cybersecurity strategy that is proactive in nature, encouraging long-term resilience. This includes making strides towards securing legacy systems, embedding cybersecurity into all digital transformations across the factory floor, strengthening the manufacturing supply chain, and looking beyond the tech, by addressing human risk with timely and relevant security awareness training.
Ultimately, cybersecurity in manufacturing is not optional; it's foundational. By recognising the evolving threat landscape and investing in robust security measures, the manufacturing sector can build resilience and secure its digital future.
For further insights into the state of cybersecurity in the European manufacturing sector, read KnowBe4’s latest report, Securing Manufacturing’s Digital Future, by clicking here.
