Ransomware Attacks on Industrial Organizations and Infrastructure Double in 2023

The threat of ransomware attacks targeting industrial organizations and infrastructure has reached alarming heights, according to a recent report by Dragos. Analyzing data from the second quarter of 2023, the cybersecurity firm provides valuable insights into this rising trend and the factors driving it.

Increase in Ransomware Incidents

Dragos’ report reveals a doubling in the number of ransomware attacks since the second quarter of 2022. In the second quarter of 2023 alone, the firm documented 253 ransomware incidents, representing an 18% increase compared to the preceding quarter. These figures underscore the growing persistence and sophistication of ransomware attacks across the industrial sector.

Reasons for the Surge in Attacks

Dragos attributes the surge in ransomware attacks to a decline in ransomware revenue witnessed in 2022, as more victims choose not to pay the demanded ransoms. Consequently, ransomware-as-a-service (RaaS) groups have shifted their focus toward larger organizations and are resorting to widespread ransomware distribution attacks to sustain their revenues. This change in strategy has significantly contributed to the recent surge in industrial-targeted attacks.

Motivation Behind Targeting Industrial Organizations

The prevailing political tension between NATO countries and Russia has become a crucial motivator for Russian-aligned ransomware groups to target and disrupt critical infrastructure in NATO nations. This rising motivation reflects a variety of factors, such as political retaliation, economic warfare, and showcasing power on a global stage. The repercussions of these attacks extend beyond financial losses, compromising national security and strategic interests.

Geographical Distribution of Attacks

Based on Dragos’s findings, nearly half of the ransomware attacks observed by the security firm affected organizations and infrastructure in North America. This concentration can be attributed to factors such as the presence of critical infrastructure, higher connectivity, and a larger number of potential targets. However, the report highlights that no region is immune to these threats, emphasizing the need for comprehensive cybersecurity measures globally.

Most Active Ransomware Groups

During the second quarter of 2023, Dragos monitored 66 ransomware groups, of which half launched attacks. The standout group was LockBit, responsible for 48 ransomware incidents. These findings underline the level of organization and sophistication exhibited by such groups, necessitating even stronger cybersecurity defenses and proactive measures.

Most Targeted Sectors

The report identifies the manufacturing sector as the primary target of ransomware attacks, with 177 incidents recorded. This trend can be attributed to the sector’s reliance on complex supply chains, interconnected systems, and the potential for massive disruptions. Following manufacturing, the industrial control systems (ICS), transportation, and oil and gas sectors also faced significant ransomware incidents, emphasizing the wide-ranging impact of these attacks across critical industries.

Previous Quarter Comparison

Comparing the data from the second quarter of 2023 with the previous quarter, the report highlights a 30% increase in ransomware incidents during the last quarter of 2022. This upward trajectory signifies the escalating nature of these attacks, as threat actors continuously adapt their tactics and exploit vulnerabilities in industrial organizations and infrastructure.

The relentless surge in ransomware attacks targeting industrial organizations and infrastructure poses a significant threat to global security and economic stability. The report by Dragos sheds light on the growing scale and impact of these attacks, urging the need for heightened cybersecurity measures and proactive defense strategies. As geopolitical tensions persist and ransomware groups continue to evolve, it is essential for industrial organizations, governments, and security professionals to collaborate closely to safeguard critical infrastructure and protect against the pervasive danger of ransomware.

Explore more

Can a Unified ERP System Future-Proof Levi Strauss?

Establishing a seamless digital environment for a brand that spans over a hundred nations is a monumental undertaking that requires more than just standard software updates. Currently, Levi Strauss & Co. is navigating a profound transformation of its digital infrastructure, aiming for a mid-2027 completion of a fully integrated global enterprise resource planning system. This strategic overhaul is not merely

Ethereum Faces $10 Billion Liquidation Risk Near $2,000

The current trajectory of Ethereum suggests a massive collision between aggressive retail speculation and sophisticated institutional sell-side pressure as the asset hovers near the $2,000 psychological threshold. This specific price point has historically served as a pivot for broader market sentiment, influencing the behavior of various decentralized finance protocols and secondary layer-two scaling solutions. Currently, the market exhibits a state

ClickLock Malware Coerces macOS Users to Surrender Passwords

Traditional macOS security architectures have long been celebrated for their robust sandboxing and gated execution, yet a new strain of malware is proving that the human element remains the most vulnerable entry point in any digital ecosystem. This threat, known as ClickLock, has emerged as a particularly aggressive evolution in the macOS threat landscape by prioritizing psychological pressure and social

Stalled Windows 11 Migration Poses Growing Security Risks

The global landscape of enterprise computing is currently grappling with a persistent digital divide as a significant segment of users continues to rely on Windows 10 despite the availability of more secure alternatives. The current ecosystem of digital infrastructure remains tethered to legacy architecture, with recent telemetry indicating that approximately one in six workstations worldwide continues to operate on Windows

How Is OpenAI Redefining AI With Precision Engineering?

The shift from experimental conversationalists to precise engineering tools has fundamentally altered the landscape of digital productivity and high-performance computing in 2026. This transition is marked by a move away from the early excitement surrounding generative models toward a rigorous framework centered on deep optimization and granular control. OpenAI has spearheaded this movement with the introduction of the GPT-5.6 Sol