RANSOMWARE ATTACKS TARGETING INDUSTRIAL OPERATORS SURGE 46% IN ONE QUARTER, HONEYWELL REPORT FINDS - Middle East Business News and Information
Honeywell's 2025 Cybersecurity Threat Report reveals energy, manufacturing and other critical industrial sectors face significant escalation in threats
DUBAI, United Arab Emirates, June , 2025 – In a growing wave of sophisticated cyber threats against the industrial sector, ransomware attacks jumped by 46% from Q4 2024 to Q1 2025, according to Honeywell's (Nasdaq: HON) new 2025 Cybersecurity Threat Report. The research also found that both malware and ransomware increased significantly in this period and included a 3,000% spike in the use of one trojan designed to steal credentials from industrial operators.
'Industrial operations across critical sectors like energy and manufacturing must avoid unplanned downtime as much as possible – which is precisely why they are such attractive ransomware targets,' said Paul Smith, director of Honeywell Operational Technology (OT) Cybersecurity Engineering, who authored the report. 'These attackers are evolving fast, leveraging ransomware-as-a-service kits to compromise the industrial operations that keep our economy moving.'
The Cybersecurity and Infrastructure Security Agency (CISA) in the United States defines incidents as substantial if they enable unauthorized access leading to significant operational downtime or impairments. Industry reports show that unplanned downtime, caused by cybersecurity attacks and other issues like equipment failure, cost Fortune 500 companies approximately $1.5 trillion annually representing 11% of their revenue.
To develop the report, Honeywell researchers analyzed more than 250 billion logs, 79 million files and 4,600 incident events that were blocked across the company's global install base, finding: Ransomware still on the rise: 2,472 potential ransomware attacks were documented in the first quarter of 2025, which represent 40% of the annual total from 2024.
Trojans exploiting industrial access: A dangerous trojan targeting OT systems – W32.Worm.Ramnit – accounted for 37% of files blocked by Honeywell's Secure Media Exchange (SMX). This finding points to a 3,000% spike in the trojan compared to the previous quarter.
USB based threats persist: 1,826 unique USB threats were detected via SMX in Q1 2025, with 124 never-before-seen threats – indicating a persistent risk via external media and USB devices. This built on a 33% increase in USB malware detections in 2023, following a 700% year-over-year surge in 2022.
The report expanded its analysis to include threats delivered through additional plug-in hardware – known as Human Interface Device (HID) – including mice, charging cords for mobile devices, laptops and other peripherals often used when updating or patching software for on-premise systems.
'With increasingly significant threats and updated SEC reporting regulations requiring the disclosure of material cybersecurity incidents, industrial operators must act decisively to mitigate costly unplanned downtime and risks, including those linked to safety,' Smith said. 'Leveraging Zero Trust architecture and AI for security analysis can speed detection and enable smarter decision making and proactive defense in an increasingly complex digital landscape.'
About HoneywellHoneywell is an integrated operating company serving a broad range of industries and geographies around the world. Our business is aligned with three powerful megatrends – automation, the future of aviation and energy transition – underpinned by our Honeywell Accelerator operating system and Honeywell Forge IoT platform. As a trusted partner, we help organizations solve the world's toughest, most complex challenges, providing actionable solutions and innovations through our Aerospace Technologies, Industrial Automation, Building Automation and Energy and Sustainability Solutions business segments that help make the world smarter and safer as well as more secure and sustainable.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Mid East Info
2 days ago
- Mid East Info
RANSOMWARE ATTACKS TARGETING INDUSTRIAL OPERATORS SURGE 46% IN ONE QUARTER, HONEYWELL REPORT FINDS - Middle East Business News and Information
Honeywell's 2025 Cybersecurity Threat Report reveals energy, manufacturing and other critical industrial sectors face significant escalation in threats DUBAI, United Arab Emirates, June , 2025 – In a growing wave of sophisticated cyber threats against the industrial sector, ransomware attacks jumped by 46% from Q4 2024 to Q1 2025, according to Honeywell's (Nasdaq: HON) new 2025 Cybersecurity Threat Report. The research also found that both malware and ransomware increased significantly in this period and included a 3,000% spike in the use of one trojan designed to steal credentials from industrial operators. 'Industrial operations across critical sectors like energy and manufacturing must avoid unplanned downtime as much as possible – which is precisely why they are such attractive ransomware targets,' said Paul Smith, director of Honeywell Operational Technology (OT) Cybersecurity Engineering, who authored the report. 'These attackers are evolving fast, leveraging ransomware-as-a-service kits to compromise the industrial operations that keep our economy moving.' The Cybersecurity and Infrastructure Security Agency (CISA) in the United States defines incidents as substantial if they enable unauthorized access leading to significant operational downtime or impairments. Industry reports show that unplanned downtime, caused by cybersecurity attacks and other issues like equipment failure, cost Fortune 500 companies approximately $1.5 trillion annually representing 11% of their revenue. To develop the report, Honeywell researchers analyzed more than 250 billion logs, 79 million files and 4,600 incident events that were blocked across the company's global install base, finding: Ransomware still on the rise: 2,472 potential ransomware attacks were documented in the first quarter of 2025, which represent 40% of the annual total from 2024. Trojans exploiting industrial access: A dangerous trojan targeting OT systems – – accounted for 37% of files blocked by Honeywell's Secure Media Exchange (SMX). This finding points to a 3,000% spike in the trojan compared to the previous quarter. USB based threats persist: 1,826 unique USB threats were detected via SMX in Q1 2025, with 124 never-before-seen threats – indicating a persistent risk via external media and USB devices. This built on a 33% increase in USB malware detections in 2023, following a 700% year-over-year surge in 2022. The report expanded its analysis to include threats delivered through additional plug-in hardware – known as Human Interface Device (HID) – including mice, charging cords for mobile devices, laptops and other peripherals often used when updating or patching software for on-premise systems. 'With increasingly significant threats and updated SEC reporting regulations requiring the disclosure of material cybersecurity incidents, industrial operators must act decisively to mitigate costly unplanned downtime and risks, including those linked to safety,' Smith said. 'Leveraging Zero Trust architecture and AI for security analysis can speed detection and enable smarter decision making and proactive defense in an increasingly complex digital landscape.' About HoneywellHoneywell is an integrated operating company serving a broad range of industries and geographies around the world. Our business is aligned with three powerful megatrends – automation, the future of aviation and energy transition – underpinned by our Honeywell Accelerator operating system and Honeywell Forge IoT platform. As a trusted partner, we help organizations solve the world's toughest, most complex challenges, providing actionable solutions and innovations through our Aerospace Technologies, Industrial Automation, Building Automation and Energy and Sustainability Solutions business segments that help make the world smarter and safer as well as more secure and sustainable.
Mid East Info
03-06-2025
- Mid East Info
Confluent Unites Batch and Stream Processing for Faster, Smarter Agentic AI and Analytics - Middle East Business News and Information
Confluent, Inc. (Nasdaq: CFLT), the data streaming pioneer, announced new Confluent Cloud capabilities that make it easier to process and secure data for faster insights and decision-making. Snapshot queries, new in Confluent Cloud for Apache Flink®, bring together real-time and historic data processing to make artificial intelligence (AI) agents and analytics smarter. Confluent Cloud network (CCN) routing simplifies private networking for Apache Flink®, and IP Filtering adds access controls for publicly accessible Flink pipelines, securing data for agentic AI and analytics. 'Agentic AI is moving from hype to enterprise adoption as organizations look to gain a competitive edge and win in today's market,' said Shaun Clowes, Chief Product Officer at Confluent. 'But without high-quality data, even the most advanced systems can't deliver real value. The new Confluent Cloud for Apache Flink® features make it possible to blend real-time and batch data so that enterprises can trust their agentic AI to drive real change.' Bridging the Real-Time and Batch Divide 'The rise of agentic AI orchestration is expected to accelerate, and companies need to start preparing now,' said Stewart Bond, Vice President of Data Intelligence and Integration Software at IDC. 'To unlock agentic AI's full potential, companies should seek solutions that unify disparate data types, including structured, unstructured, real-time, and historical information, in a single environment. This allows AI to derive richer insights and drive more impactful outcomes.' Agentic AI is driving widespread change in business operations by increasing efficiency and powering faster decision-making by analyzing data to uncover valuable trends and insights. However, for AI agents to make the right decisions, they need historical context about what happened in the past and insight into what's happening right now. For example, for fraud detection, banks need real-time data to react in the moment and historical data to see if a transaction fits a customer's usual patterns. Hospitals need real-time vitals alongside patient medical history to make safe, informed treatment decisions. But to leverage both past and present data, teams often have to use separate tools and develop manual workarounds, resulting in time-consuming work and broken workflows. Additionally, it's important to secure the data that's used for analytics and agentic AI; this ensures trustworthy results and prevents sensitive data from being accessed. Snapshot Queries Unify Processing on One Platform In Confluent Cloud, snapshot queries let teams unify historical and streaming data with a single product and language, enabling consistent, intelligent experiences for both analytics and agentic AI. With seamless Tableflow integration, teams can easily gain context from past data. Snapshot queries allow teams to explore, test, and analyze data without spinning up new workloads. This makes it easier to supply agents with context from historic and real-time data or conduct an audit to understand key trends and patterns. Snapshot queries are now available in early access. CCN Routing Simplifies Private Networking for Flink Private networking is important for organizations that require an additional layer of security. Confluent offers a streamlined private networking solution by reusing existing CCNs that teams have already created for Apache Kafka® clusters. Teams can use CCN to securely connect their data to any Flink workload, such as streaming pipelines, AI agents, or analytics. CCN routing is now generally available on Amazon Web Services (AWS) in all regions where Flink is supported. IP Filtering Protects Flink Workloads in Hybrid Environments Many organizations that operate in hybrid environments need more control over which data can be publicly accessed. IP Filtering for Flink helps teams restrict internet traffic to allowed IPs and improves visibility into unauthorized access attempts by making it easier to track the attempts. IP Filtering is generally available for all Confluent Cloud users. Now organizations can more easily turn the promise of agentic AI into a competitive advantage. To learn more about the other new Confluent Cloud features, including the Snowflake source connector, cross-cloud Cluster Linking, and new Schema Registry private networking features, check out the launch blog.
See - Sada Elbalad
30-05-2025
- See - Sada Elbalad
NVIDIA Shares Jump about 6% after better-than-expected Quarterly Earnings
Taarek Refaat NVIDIA shares jumped about 6% after the company reported better-than-expected quarterly earnings, boosted by a 73% year-over-year increase in data center revenue. "NVIDIA's results on Wednesday are pivotal not just for NVIDIA, but for the broader market, as they can reignite investor optimism and shift attention away from political headlines to the power of artificial intelligence," said James Demert, chief investment officer at Main Street Research. Despite Wednesday's weak market performance, major US indices are on track to end the week—and month—with strong gains. The S&P 500 is up 2.2% since the start of the week, the Dow is up 1.3%, and the Nasdaq is up 3%. The tech sector is up more than 10% in May, driven by AI announcements from major companies like Alphabet. During May, the S&P 500 rose 6%, the Dow Jones rose 3.6%, and the Nasdaq jumped 11%. These gains come after President Trump on Sunday backed down from his threat to impose 50% tariffs on the EU on June 1, postponing the implementation until July 9. Although markets welcomed the news, criticism of the tariffs' impact on markets continues, according to a report published by CNBC. US stock indices posted significant gains on Thursday after a federal court ruled to invalidate the "reciprocal" tariffs imposed by US President Donald Trump. Nvidia's strong quarterly results also pushed technology stocks higher, boosting market performance. The S&P 500 rose 0.8%, while the Nasdaq Composite jumped 1.5%, returning to positive territory for the year to date. The Dow Jones Industrial Average rose 46 points, or 0.1%. This rise came after the U.S. Court of International Trade ruled Wednesday evening that President Trump exceeded his authority by imposing tariffs under the name "reciprocal duties," and ordered the reversal of those decisions. read more CBE: Deposits in Local Currency Hit EGP 5.25 Trillion Morocco Plans to Spend $1 Billion to Mitigate Drought Effect Gov't Approves Final Version of State Ownership Policy Document Egypt's Economy Expected to Grow 5% by the end of 2022/23- Minister Qatar Agrees to Supply Germany with LNG for 15 Years Business Oil Prices Descend amid Anticipation of Additional US Strategic Petroleum Reserves Business Suez Canal Records $704 Million, Historically Highest Monthly Revenue Business Egypt's Stock Exchange Earns EGP 4.9 Billion on Tuesday Business Wheat delivery season commences on April 15 News Ayat Khaddoura's Final Video Captures Bombardment of Beit Lahia News Australia Fines Telegram $600,000 Over Terrorism, Child Abuse Content Arts & Culture Nicole Kidman and Keith Urban's $4.7M LA Home Burglarized Sports Former Al Zamalek Player Ibrahim Shika Passes away after Long Battle with Cancer Sports Neymar Announced for Brazil's Preliminary List for 2026 FIFA World Cup Qualifiers News Prime Minister Moustafa Madbouly Inaugurates Two Indian Companies Arts & Culture New Archaeological Discovery from 26th Dynasty Uncovered in Karnak Temple Business Fear & Greed Index Plummets to Lowest Level Ever Recorded amid Global Trade War Arts & Culture Zahi Hawass: Claims of Columns Beneath the Pyramid of Khafre Are Lies News Flights suspended at Port Sudan Airport after Drone Attacks
