As industrial, operational technology, and IoT environments continue to expand and interconnect, the security landscape grows increasingly complex. Today’s briefing highlights emerging ransomware threats, critical supply chain risks, and vital industry partnerships aiming to safeguard vital infrastructure. Staying ahead requires vigilance as attackers evolve tactics targeting legacy systems and critical communication components worldwide.
Black Shrantac Ransomware Group Exploits Critical PAN-OS Flaw to Target Industrial Environments
Researchers at Marlink have uncovered how the Black Shrantac ransomware group leverages a severe PAN-OS GlobalProtect vulnerability (CVE-2024-3400) to infiltrate industrial networks. Using trojanized updates, legitimate remote access tools, and Kerberos ticket harvesting, the group maintains stealthy persistence and employs double extortion, focusing heavily on maritime and industrial OT sectors.
Source: Industrial Cyber
FDD Report Warns Chinese Cellular Modules Embedded in US Critical Infrastructure Pose National Security Threat
The Foundation for Defense of Democracies highlights the risks posed by Chinese-made cellular modules from Quectel and Fibocom dominating US critical infrastructure. Their embedded remote access features create potential backdoors for surveillance, data theft, or sabotage across power grids, ports, and healthcare systems, prompting calls for Congressional audits and procurement restrictions.
Source: Industrial Cyber
Ransomware Reaches Elevated ‘New Normal’ in Q1 2026; Manufacturing Remains Primary Target
GuidePoint Security’s latest report shows ransomware attacks have stabilized at a high baseline with the US bearing over half of incidents. Manufacturing continues to be hardest hit, while construction faces rapid growth in attacks. Threat actors are shifting from encryption attacks to data theft and extortion-only models, with new RaaS groups like “The Gentlemen” expanding their victim base dramatically.
Source: Industrial Cyber
Emerson and OPSWAT Collaborate to Embed OT Patch Management into Ovation Automation Platform
Emerson and OPSWAT have formed a global partnership to integrate MetaDefender Endpoint and My OPSWAT Central Management into the Ovation Automation Platform deployed at over 800 utility sites. This collaboration addresses unpatched vulnerabilities in critical OT environments, reflecting a growing industry focus on cybersecurity solutions tailored to operational availability and safety.
Source: Industrial Cyber
Manufacturing Sector Absorbs 56% Ransomware Surge in 2025, Accounting for Half of Global Attacks
Check Point Research reports a 56% year-over-year increase in ransomware targeting manufacturing in 2025, responsible for half of all global ransomware incidents. Vulnerable legacy OT systems, complex supply chains, and rapid RaaS growth drive this spike, with the US experiencing the highest number of attacks and median ransoms reaching $500,000.
Source: Industrial Cyber
As threats targeting OT and critical infrastructure continue to evolve, proactive patch management, supply chain scrutiny, and strategic partnerships remain essential. Staying informed and prepared is key to mitigating risk and protecting the backbone of our industrial world.
