The article "Critical Infrastructure Under Siege: OT Security Still Lags" from Dark Reading, published on May 15, 2025, highlights the persistent vulnerabilities in the operational technology (OT) systems that underpin critical infrastructure sectors. Despite increasing cyber threats, many OT environments remain inadequately secured, prompting urgent warnings from U.S. federal agencies.Industrial Cyber+3darkreading.com+3darkreading.com+3

Key Points:

• Federal Warnings: Agencies like CISA, the FBI, EPA, and DoE have reported cyber incidents affecting OT and industrial control systems (ICS) across various critical infrastructure entities in the U.S. They emphasize the need for immediate action to bolster OT security.darkreading.com
• Recommended Security Measures:
  • Disconnect OT systems from public internet access.
  • Replace default passwords with strong, unique credentials.
  • Secure remote access pathways to OT networks.
  • Implement network segmentation between IT and OT systems.
  • Develop manual operation capabilities to maintain OT functions during cyber incidents.IIoT World+7darkreading.com+7missionsecure.com+7LinkedIn+4darkreading.com+4Wikipedia+4
• Scope of Critical Infrastructure: The term encompasses 16 sectors, including energy, healthcare, transportation, and water systems. These sectors are increasingly targeted by cyberattacks, with manufacturing being notably affected.
• Rise in Ransomware Attacks: According to Fortinet's 2025 Global Threat Landscape Report, manufacturing accounted for 17% of ransomware attacks last year. Dragos' 2025 Year in Review report notes an 87% year-over-year increase in ransomware attacks against industrial organizations.

The article underscores the critical need for organizations to prioritize OT security to protect essential services and infrastructure from escalating cyber threats.

‍

Source: https://www.darkreading.com/ics-ot-security/critical-infrastructure-ot-security-still-lags