Back

CNI Firms Face Significant Downtime Costs from Cyber Attacks on OT Systems

Severity: Medium (Score: 58.0)

Sources: Infosecurity-Magazine, Industrialcyber.Co

Summary

A recent survey indicates that 80% of critical national infrastructure (CNI) providers in the UK face downtime costs ranging from £100,000 to £5 million due to cyber-attacks targeting operational technology (OT). The survey, conducted by e2e-assure, highlights that 23% of OT downtime incidents cost over £1 million, with 6% exceeding £5 million. This growing concern is fueled by fears of nation-state attacks, particularly in light of recent geopolitical tensions. The report also notes that many organizations struggle to detect breaches promptly, with 10% of large enterprises taking over a year to remediate incidents. Additionally, reputational damage and supply chain compromises are significant risks, with 21% of mid-sized organizations reporting multiple incidents linked to third parties. The economic impact of these breaches is substantial, with unplanned downtime costing industrial manufacturers up to $50 billion annually. The shift in threat landscape emphasizes the need for improved visibility and proactive measures in OT environments. Key Points: • 80% of CNI firms face downtime costs between £100,000 and £5 million from OT cyber-attacks. • 23% of OT incidents result in costs exceeding £1 million, with 6% over £5 million. • Detection and remediation of breaches remain a challenge, with 10% of enterprises taking over a year.

Key Entities

  • Bauxite (apt_group)
  • Pyroxene (apt_group)
  • Salt Typhoon (apt_group)
  • Volt Typhoon (apt_group)
  • Brickstorm (malware)
  • Brute Force (attack_type)
  • Data Breach (attack_type)
  • Phishing (attack_type)
  • Ransomware (attack_type)
  • Supply Chain Attack (attack_type)
  • Colonial Pipeline (company)
  • Jaguar Land Rover (company)
  • China (country)
  • Iran (country)
  • Israel (country)
  • Russia (country)
  • Energy (industry)
  • Government (industry)
  • Healthcare (industry)
  • Manufacturing (industry)
  • Oil and Gas (industry)
  • T1110 - Brute Force (mitre_attack)
  • T1195 - Supply Chain Compromise (mitre_attack)
  • T1566 - Phishing (mitre_attack)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed