Key Cyber Threats to the Manufacturing Sector in Q3 2022

This report outlines the key cyber threats facing the manufacturing sector during the third quarter of 2022. It identifies an increase in threats from social engineering tactics such as smishing and callback phishing, as well as the exploitation of vulnerabilities in outdated products and widely used third-party software. The report details the activities of state-aligned threat actors utilizing custom malware against industrial control systems, and notes the challenges posed by Initial Access Brokers moving towards private communication channels, complicating identification and mitigation efforts. Additionally, it discusses the ongoing risks posed by ransomware and digital extortion, particularly against large manufacturing targets. The report concludes with a forward-looking assessment indicating that the threat landscape is expected to evolve significantly in the coming months, driven by geopolitical tensions and the increasing sophistication of cyber threats targeting the manufacturing industry.