The operational technology (OT) and industrial control systems (ICS) security landscape continues to evolve rapidly, with new vulnerabilities and threat actors emerging across critical infrastructure and manufacturing sectors. Organizations must remain vigilant as attackers leverage increasingly sophisticated techniques targeting IoT devices, vendor access points, and legacy systems to disrupt operations and compromise sensitive data.
BRIDGE:BREAK Uncovers 22 Critical Vulnerabilities in Serial-to-IP Converters Threatening OT Networks
Forescout Technologies’ BRIDGE:BREAK research revealed 22 previously unknown vulnerabilities in serial-to-IP converters from Lantronix and Silex Technology, affecting thousands of exposed devices worldwide. These flaws enable remote code execution, authentication bypass, and denial-of-service attacks, posing significant risks for disruption and lateral movement within OT environments, including hospitals and electrical substations.
Source: Industrial Cyber
9 Nations Alert on China-Linked Hackers Exploiting Home Routers and IoT Devices to Conceal Attacks
A coalition of nine countries, led by the UK’s National Cyber Security Centre, issued a joint advisory warning of China-affiliated hackers using compromised home routers and IoT devices to build covert botnets. These networks exploit end-of-life devices to infiltrate critical sectors globally, stealing data and maintaining persistent access while evading detection.
Source: CyberNews
Dragos 2026 Report Highlights 64% Surge in Ransomware Attacks Targeting Industrial Organizations
The Dragos 2026 OT/ICS Cybersecurity Report details a significant 64% increase in ransomware attacks against industrial entities, with manufacturing sectors disproportionately affected. Attackers exploited weaknesses such as exposed remote access tools and unpatched systems, impacting over 3,300 organizations worldwide.
Source: InfoSecurity Magazine
Federal Advisory Warns of Iranian-Affiliated Cyber Actors Exploiting Internet-Facing PLCs in US Infrastructure
A joint advisory from CISA, FBI, and partners confirmed Iranian-affiliated actors have been targeting internet-facing programmable logic controllers (PLCs) from key manufacturers across US critical infrastructure. Using manufacturer engineering software, attackers manipulated control systems in sectors including energy and water services to maintain stealthy remote access.
Source: Paubox Blog
Tosi 2026 Report Identifies Vendor Remote Access as the Weakest OT Security Capability Across Industries
Tosi’s 2026 State of OT Security Report, corroborated by a recent federal advisory, highlights vendor remote access as the most vulnerable security area in OT environments. Manufacturing scored lowest on controlling vendor access, with many organizations taking hours or even days to revoke credentials after task completion.
Source: Morningstar News
As threat actors continue to exploit weaknesses across OT and IoT ecosystems, maintaining robust security practices and timely threat intelligence is essential. Staying vigilant and proactive is critical to safeguarding industrial operations and critical infrastructure.
