{"id":195826,"date":"2026-03-12T10:24:00","date_gmt":"2026-03-12T14:24:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/12\/5-ways-to-protect-manufacturing-companies-from-cyberattacks\/"},"modified":"2026-03-14T09:31:37","modified_gmt":"2026-03-14T13:31:37","slug":"5-ways-to-protect-manufacturing-companies-from-cyberattacks","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/12\/5-ways-to-protect-manufacturing-companies-from-cyberattacks\/","title":{"rendered":"5 ways to protect manufacturing companies from cyberattacks"},"content":{"rendered":"

5 ways to protect manufacturing companies from cyberattacks<\/a><\/p>\n

https:\/\/www.cybersecuritydive.com\/news\/manufacturing-cyberattacks-security-recommendations\/814526\/<\/a><\/p>\n

Publish Date: 2026-03-12 10:24:00<\/a><\/p>\n

Source Domain: www.cybersecuritydive.com<\/a><\/p>\n

Author: <\/a><\/p>\n

Using an unordered list, summarize the following article with between 4 and 8 key points. <\/p>\n

The manufacturing sector was the most targeted by hackers in 2025, for the fifth year in a row, according to a recent IBM X-Force report. But although many manufacturers have taken some steps to protect their systems, cybersecurity experts say most can do more to prevent attacks, or at least limit the damage if an attack occurs.\u00a0
\nManufacturers are targeted by hackers in part because they have \u201chigh\u2011value intellectual property and complex legacy systems that are harder to patch and therefore easier to exploit,\u201d\u00a0Ryan Anschutz, North American incidence response lead at IBM X-Force, said in an email.
\nAdding to the problem, Anschutz said, is that manufacturing organizations often do not have the capital to fund good cybersecurity programs.
\nPatrick Garrity, security researcher at VulnCheck, agreed that older systems make for attractive targets.\u00a0<\/p>\n

\u201cMany manufacturers still rely on legacy technologies and industrial systems that were not designed with modern cybersecurity in mind,\u201d he said in an email. \u201cModernization often happens slowly, leaving organizations operating a mix of old and new systems that can expand the attack surface.”
\nManufacturers are also under constant pressure to keep operating even if they are the victim of an attack,\u00a0Corey Nachreiner, chief security officer at WatchGuard Technologies, said in an email.
\n\u201dTo a manufacturer, every minute of uptime translates to money,\u201d he said. \u201cCybercriminals and ransomware threat actors realize this. Every hour they can keep a manufacturer down costs the company revenue and profit, so they can really turn the screws with extortion if they can lock up a manufacturer with a cyberattack.\u201d
\nIn addition to being relatively soft targets, experts said manufacturers often make mistakes that increase their vulnerability. Some of the most common include:<\/p>\n

Treating operational technology environments as separate from cybersecurity programs. \u201cWhen OT systems are not integrated into centralized monitoring or detection workflows, threats can go unnoticed for long periods,\u201d Adam Marr\u00e8, chief information security officer at Arctic Wolf, said in an email.
\nUnderestimating the risk associated with identity security and remote access. \u201cAttackers frequently log in using stolen credentials rather than breaking through defenses, which means weak authentication controls or overly permissive access policies can create major exposure,\u201d\u00a0Marr\u00e8 said.
\nLacking a disaster recovery and business continuity plan. \u201cOften, [manufacturers] may not have the strongest plan to keep operations running manually in the event of tech disasters,\u201d\u00a0Nachreiner said.
\nDelaying technology modernization. Older systems \u201cmay still function operationally, but they can introduce significant security risks if patching, asset visibility and vulnerability management are not consistently maintained,\u201d\u00a0Garrity said.
\nFailing to back up systems regularly. \u201cSome organizations keep backups online or do not test restoration regularly, which leaves them vulnerable to ransomware that encrypts or deletes backup data,\u201d Reegun Jayapaul, director of threat research at Cyderes, said in an email,<\/p>\n

According to Jayapaul, attackers typically gain initial access through phishing, exposed remote services, or compromised supplier accounts.
\n\u201cIf network segmentation between IT and OT is weak, they can move laterally toward industrial controllers or manufacturing execution systems,\u201d he said.
\nAttackers also frequently target edge network devices, virtualization platforms and server infrastructure.
\n\u201cThese systems are often exposed to the internet or sit at critical points within the network, making them attractive entry points,\u201d Garrity said. \u201cWhen vulnerabilities exist in these technologies, especially if patches are delayed, they can provide attackers with an initial foothold that can then be used to move deeper into operational environments.<\/p>\n

No matter where the attack comes from, \u201ccyber incidents can quickly become physical,\u00a0costly,\u00a0disruptions,\u201d Richard Springer, senior director of OT solutions marketing at Fortinet, said in an email. \u201cAn attack can halt production lines, damage equipment or interrupt critical supply chains, which raises the stakes beyond traditional IT breaches.\u201d\u00a0
\nDespite the wide range of threats that manufacturers face, there are several steps they can take \u2014 starting immediately \u2014 to shore up vulnerabilities and protect their systems.
\nStrengthen IT\/OT collaboration, but keep them separate
\nOne important way that manufacturers can strengthen their defenses against cyberattacks is to improve collaboration between their information technology and operational technology departments.\u00a0Companies need to adopt a \u201ccontinuous, proactive approach to identifying weaknesses across IT and OT environments,\u201d\u00a0Anschutz said.\u00a0
\n\u201cThreat actors exploit gaps between these environments frequently,\u201d he said. \u201cTaking a shared visibility, common process and unified response workflow will reduce environmental blind spots and accelerate containment should an incident occur.\u201d
\nAt the same time, Marr\u00e8\u00a0said, it is critical to separate IT and OT to limit the spread of an attack. \u201cEffective segmentation also allows organizations to apply stricter monitoring and access policies around critical industrial systems that directly support manufacturing operations,\u201d he said.
\nShore up identity security
\nAnschutz said that many threat actors access manufacturers\u2019 systems by abusing credentials, especially for customer-facing applications.
\n\u201cThat is why it is critically imperative that manufacturers gain better visibility into identity-based risks and threats,\u201d he said. \u201cBy combining AI-powered identity threat detection and response and identity security posture management, they can more quickly and efficiently identify vulnerabilities and prevent attacks from happening.\u201d
\nIt is also important to regularly use multifactor authentication across remote access tools, administrative accounts and critical systems, Marr\u00e8 said.
\nIn addition, companies should \u201cregularly audit privileged accounts, remove unnecessary permissions, and monitor for unusual login behavior such as logins outside normal working hours or from unfamiliar locations,\u201d he said. \u201cStrong identity controls help ensure that even if credentials are compromised, attackers cannot easily move deeper into the environment.\u201d
\nUpdate software quickly
\nNachreiner said manufacturers should patch\u00a0all of their systems as quickly as possible when upidates become available to limit attackers\u2019 ability to find their way in.
\n\u201cWhether the back office or business side software or hardware, or the OT and industrial control systems used on the manufacturing factory floor, you should make sure to update software and firmware quickly,\u201d he said. \u201cIf an update has high or critical vulnerabilities, you should patch it at least within 30 days.\u201d
\nPrioritize vulnerabilities
\nManufacturers should remember that not all threats are equally dangerous.\u00a0
\n\u201cPrioritize vulnerabilities based on real-world threat activity, not just severity scores like the [Common Vulnerability Scoring System],\u201d Garrity said. \u201cThreat-informed prioritization helps organizations focus on vulnerabilities attackers are actually exploiting.\u201d <\/p>\n

According to the SANS Institute, a cybersecurity training and certification organization, the CVSS is a way to evaluate and rank reported cybersecurity risks in a standardized and repeatable manner. Although a CVSS score and similar approaches can help compare vulnerabilities across applications and vendors, it should be not blindly relied upon, Garrity said.
\nBuild cyber resilience into operations
\nPlanning for downtime needs to be part of a company’s cybersecurity strategy.
\n\u201cPlan for downtime scenarios, test your recovery processes regularly and ensure teams can restore operations quickly while under duress,\u201d Anschutz said. \u201cWe want to take the idea that we build resilience into operations, so downtime does not become leverage for the threat actor.\u201d<\/p>\n

<\/p>\n","protected":false},"excerpt":{"rendered":"

5 ways to protect manufacturing companies from cyberattacks https:\/\/www.cybersecuritydive.com\/news\/manufacturing-cyberattacks-security-recommendations\/814526\/ Publish Date: 2026-03-12 10:24:00 Source Domain:…<\/p>\n","protected":false},"author":1,"featured_media":195827,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/imgproxy.divecdn.com\/piGmBdHmbsCoU54NB2JNbP1PkjwZYvZQC5aZr9icSiM\/g:ce\/rs:fit:770:435\/Z3M6Ly9kaXZlc2l0ZS1zdG9yYWdlL2RpdmVpbWFnZS9IZXhhZ29uTUlSUTIwMThQb2Q4MDB4NDI4RGVzaWduRW5naW5lZXJpbmdJY29uMS5qcGc=.webp","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,24,31,25,34,27],"class_list":["post-195826","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-cybersecurity","tag-exploit","tag-phishing","tag-threat-actor","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/195826"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=195826"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/195826\/revisions"}],"predecessor-version":[{"id":195828,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/195826\/revisions\/195828"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/195827"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=195826"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=195826"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=195826"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}