As the operational technology (OT) landscape evolves, today’s cybersecurity environment faces unprecedented challenges and opportunities. From major mergers shaping the future of OT security services to critical vulnerabilities and emerging threat vectors targeting industrial systems, organizations must remain vigilant and proactive in defending their infrastructure.
Accenture’s $4.175 Billion Acquisition Creates Largest OT Cybersecurity Powerhouse
Accenture announced a major strategic move by acquiring a majority stake in Dragos at a $3.25 billion valuation, alongside full acquisitions of runZero and NetRise. This deal combines Dragos’s OT-native threat detection with runZero’s exposure assessment and NetRise’s supply chain visibility, forming the highest-valued OT cybersecurity entity to date. Accenture aims to redirect attention and investment toward protecting industrial control systems, IoT devices, and cloud-connected sensors that have long been undersecured.
Source: Industrial Cyber
CISA Warns of Inevitable Cyberattacks on U.S. Critical Infrastructure During Military Conflicts
At a recent Washington D.C. conference, CISA’s acting director Nick Andersen issued a sobering warning that U.S. water, power, and banking systems will almost certainly face successful cyberattacks by adversaries such as Russia or China in any military confrontation. In response, CISA is intensifying its CI Fortify initiative, focusing OT resources on helping critical infrastructure operators maintain operations even when disconnected from the internet. The agency plans 75–100 assessments over the next year and will publish materials to bolster sector-wide preparedness.
Source: GovInfoSecurity
CISA Issues Advisory on Critical Remote Code Execution Vulnerability in AVer PTC Security Cameras
CISA released an ICS advisory for CVE-2026-40624, a critical unauthenticated remote code execution vulnerability impacting multiple AVer PTC camera models including the PTC500S and PTC115+. The flaw, resulting from improper input validation, allows attackers to execute arbitrary code via crafted web requests. Organizations are urged to minimize internet exposure of these devices, isolate affected networks, deploy updated VPNs, and promptly install the latest firmware updates.
Source: Mallory AI
Manufacturing Sector Sees Rise in Identity-Driven Attacks Amid Credential Leaks and Vishing
Recent research from Doppel highlights a surge in sophisticated identity-based attacks targeting the manufacturing sector, with threat actors shifting from phishing to vishing, executive impersonation, and fake procurement portals. A dramatic 47-fold spike in dark web credential alerts in April signals a major leak affecting this industry. Compromised business and supplier identities have led to significant operational disruptions including production delays and financial losses.
Source: Industrial Cyber
CISA Alerts on ‘FortiBleed’ Leak Exposing 74,000 Fortinet Firewall and VPN Credentials
CISA has issued a critical warning following the ‘FortiBleed’ leak, which exposed credentials for roughly 74,000 Fortinet firewall and VPN devices worldwide. The breach includes plaintext passwords and metadata affecting major corporations such as Samsung, Mercedes-Benz, and Chevron, as well as numerous government agencies. Attributed to a Russian-speaking threat group, the incident involved over 1.16 billion credential attempts. Affected organizations are advised to terminate sessions, reset passwords, enable phishing-resistant MFA, and conduct thorough log reviews.
Source: Quasar CyberTech
As threats to OT and IoT environments continue to escalate, staying informed and responsive to emerging risks is paramount. Organizations must prioritize resilience and proactive defenses to safeguard critical infrastructure in an increasingly hostile cyber landscape.
