• About
  • Subscribe
  • Contact
Friday, June 6, 2025
    Login
  • Management Leadership
    • Growth Strategies
    • Finance
    • Operations
    • Sales and Marketing
    • Careers
  • Technology
    • Infrastructure and Platforms
    • Business Applications and Databases
    • Big Data, Analytics and Intelligence
    • Security
  • Industry Verticals
    • Finance and Insurance
    • Manufacturing
    • Logistics and Transportation
    • Retail and Wholesale
    • Hospitality and Tourism
    • Government and Public Services
    • Utilities
    • Media and Telecommunications
  • Resources
    • Whitepapers
    • PodChats
    • Videos
  • Events
No Result
View All Result
  • Management Leadership
    • Growth Strategies
    • Finance
    • Operations
    • Sales and Marketing
    • Careers
  • Technology
    • Infrastructure and Platforms
    • Business Applications and Databases
    • Big Data, Analytics and Intelligence
    • Security
  • Industry Verticals
    • Finance and Insurance
    • Manufacturing
    • Logistics and Transportation
    • Retail and Wholesale
    • Hospitality and Tourism
    • Government and Public Services
    • Utilities
    • Media and Telecommunications
  • Resources
    • Whitepapers
    • PodChats
    • Videos
  • Events
No Result
View All Result
No Result
View All Result
Home Industry Verticals Manufacturing

MFG sector paid highest ransomware payment

Gigi Onag by Gigi Onag
November 3, 2022
Photo: AdobeStock

Photo: AdobeStock

Manufacturing and production companies paid an average ransomware payment of US$2.036 million in 2021, more than double of the cross-sector average estimated at US$812,360 during the same time period.

According to the newly released “The State of Ransomware in Manufacturing and Production” survey report, the manufacturing and production sector forked out the highest ransom payments among other vertical industries.

Diving into the ransom payments further, manufacturing and production has one of the broadest spreads of ransoms across all sectors, with respondents reporting a wide range of payments: one in ten (11%) paid less than US$1K while nearly one third of the respondents (37%) paid more than US$100K. 8% of respondents paid above US$1M or more.

“Manufacturing is an attractive sector to target for cybercriminals due to the privileged position it occupies in the supply chain. Outdated infrastructure and lack of visibility into the OT environment provides attackers with an easy way in and a launching pad for attacks inside a breached network. The convergence of IT and OT is increasing the attack surface and exacerbating an already complex threat environment,” said John Shier, senior security advisor, Sophos.

He pointed out that while having reliable backups is an important part of recovery, today's ransomware threat requires a detailed response plan that includes human-led threat hunting capabilities.

“Complex attacks require comprehensive protection, which, for many organisations, will include the addition of managed detection and response (MDR) teams who are trained to look for and neutralise active attackers,” said Shier.

The Sophos survey involved 5,600 IT professionals, including 419 from manufacturing and production. Respondents were from mid-sized organisations (100-5,000 employees) across 31 countries. The survey was conducted during January and February 2022, and respondents were asked to answer based on their experiences over the previous year.

Research agency Vanson Bourne was commissioned  to conduct the independent, vendor-agnostic survey.

Half of manufacturing and production firms hit by ransomware in 2021

In 2021, the survey found that 55% organisations in the sector reporting being hit by ransomware, up from 36% the previous year. Sophos said this shows that hackers have become considerably more capable of executing the most significant attacks at scale.

The rise in successful ransomware attacks is part of an increasingly challenging threat environment that has affected organisations across all sectors. Respondents across all sectors reported an increase in cyberattack volume, complexity, and/or impact.

Manufacturing and production has been particularly impacted by the changing threat landscape, with 61% of respondents reporting an increase in the volume of attacks on their organisations over the last year (vs. 57% cross-sector average) and 66% reporting an increase in attack complexity (vs. 59% cross-sector average).

“It may be that the sector’s superior ability to stop data encryption has forced adversaries to up their games when it comes to attacks. Alternatively, it may simply reflect an increased focus on the sector by cyber criminals over the last year,” the report said.

Lowest level of backup use across all sectors

Manufacturing and production companies  reported the lowest level of backup use across all sectors, with just 58% of respondents using this approach to restore encrypted data compared to the cross-sector average of 73%.

In fact, the sector reduces the use of backup compared with the previous year, when 68% of organisations used backups for data restoration. This is a concerning finding as backups are essential for recovery from ransomware and many other incidents.

Furthermore, almost half of respondents (48%) reported using other means to restore their data.

The percentage using backups, paying ransom, and using other means clearly adds up to more than 100%, indicating that many manufacturing and production organisations use multiple restoration methods in parallel to accelerate incident recovery. Overall, 36% of manufacturing and production victims used multiple methods to restore their data.

Quick recovery from ransomware attack

Survey results showed that the sector is quick to recover from a ransomware attack,  with two-thirds of victims (67%) getting back up and running within a week. This is considerably higher than the global cross-sector average (53%), indicating that manufacturing and production is well-placed to recover from attacks.

Further demonstrating this point, just 10% in manufacturing and production said it took them between one and six months to recover, compared to the global average of 20% who recovered within this time.

Following the global trend across multiple industries, manufacturing and production companies have seen a decrease in the average cost to rectify the impact of the most recent ransomware attacks – from US$1.52M in 2020 to US$1.23 in 2021.

Still, Sophos said US$1.23M is still a very large sum that likely has a material impact on SMB organisations in any sector.

“At first sight, it may seem counter-intuitive that the average recovery bill is less than the average ransom payment. However, in many cases, insurance providers cover ransom payments,” the report stated.

There are several factors likely contributing to the below-average recovery bills for manufacturing and production.

First is the lower-than-average impact of ransomware on the operations and revenue of this sector. Secondly, the sector’s impressive ability to stop the attacks before data is encrypted helps keep remediation costs low. Finally, manufacturing and production reported the highest insurance payout rate for certain costs associated with attacks (costs of downtime and lost opportunities, etc.) which likely had a commensurate impact on the total recovery costs for this sector.

Cyber insurance drives improvement in cyber defenses

Many manufacturing and production organisations are choosing to reduce the risks associated with ransomware attacks by taking out cyber insurance coverage. For them, it’s reassuring to know that insurers pay some costs in almost all claims.

However, only  75% of manufacturing and production respondents reported having coverage against ransomware attacks, compared with a cross-sector average of 83%.

Furthermore, as the cyber insurance market hardens and it becomes more challenging to secure coverage, 97% of manufacturing and production organisations that have cyber insurance have amended their cyber defense to improve their cyber insurance position:

  • 70% have implemented new technologies/services – highest across all sectors
  • 63% have increased staff training/education activities – highest across all sectors
  • 59% have changed processes/behaviours

“It is heartening to know that the sector leads the way in terms of implementing new technologies and services and increasing staff training,” the report said.

Related:  Talent gaps in IT security raises concerns in Asia
Tags: cyber insurancecybersecuritymanufacturingransomwareSophos
Gigi Onag

Gigi Onag

Gigi has more than 15 years of experience in technology journalism, covering various aspects of enterprise IT and telecommunications from both business and technology perspective. Before joining CXOCIETY as editor for FutureIoT in July 2019, she was assistant editor of ComputerWorld Hong Kong. Based in Hong Kong, she started with regional IT publications under CMP Asia (now Informa), including Asia Computer Weekly, Intelligent Enterprise Asia and Network Computing Asia and Teledotcom Asia. She had contributed articles to South China Morning Post, TechTarget and PC Market among others.

No Result
View All Result

Recent Posts

  • Mainframes: Powering Asia’s business-critical industries in 2025
  • Canva taps Snowflake AI Data Cloud to accelerate growth
  • Tech and startup platform e27 announces the return of Echelon Singapore 2025
  • MERaLiON Version 2 unveiled with enhanced multilingual processing and emotional intelligence
  • Report reveals negative impacts of global tariffs in Singapore

Live Poll

Categories

  • Big Data, Analytics & Intelligence
  • Business Applications & Databases
  • Business-IT Alignment
  • Careers
  • Case Studies
  • CISO
  • CISO strategies
  • Cloud, Virtualization, Operating Environments and Middleware
  • Computer, Storage, Networks, Connectivity
  • Corporate Social Responsibility
  • Customer Experience / Engagement
  • Cyber risk management
  • Cyberattacks and data breaches
  • Cybersecurity careers
  • Cybersecurity operations
  • Education
  • Education
  • Finance
  • Finance & Insurance
  • FutureCISO
  • General
  • Governance, Risk and Compliance
  • Government and Public Services
  • Growth Strategies
  • Hospitality & Tourism
  • HR, education and Training
  • Industry Verticals
  • Infrastructure & Platforms
  • Insider threats
  • Latest Stories
  • Logistics & Transportation
  • Management Leadership
  • Manufacturing
  • Media and Telecommunications
  • News Stories
  • Operations
  • Opinion
  • Opinions
  • People
  • Process
  • Remote work
  • Retail & Wholesale
  • Sales & Marketing
  • Security
  • Tactics and Strategies
  • Technology
  • Utilities
  • Videos
  • Vulnerabilities and threats
  • White Papers

Strategic Insights for Chief Information Officers

FutureCIO is about enabling the CIO, his team, the leadership and the enterprise through shared expertise, know-how and experience - through a community of shared interests and goals. It is also about discovering unknown best practices that will help realize new business models.

Quick Links

  • Videos
  • Resources
  • Subscribe
  • Contact

Cxociety Media Brands

  • FutureIoT
  • FutureCFO
  • FutureCIO

Categories

  • Privacy Policy
  • Terms of Use
  • Cookie Policy

Copyright © 2022 Cxociety Pte Ltd | Designed by Pixl

Login to your account below

or

Not a member yet? Register here

Forgotten Password?

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
No Result
View All Result
  • Management Leadership
    • Growth Strategies
    • Finance
    • Operations
    • Sales and Marketing
    • Careers
  • Technology
    • Infrastructure and Platforms
    • Business Applications and Databases
    • Big Data, Analytics and Intelligence
    • Security
  • Industry Verticals
    • Finance and Insurance
    • Manufacturing
    • Logistics and Transportation
    • Retail and Wholesale
    • Hospitality and Tourism
    • Government and Public Services
    • Utilities
    • Media and Telecommunications
  • Resources
    • Whitepapers
    • PodChats
    • Videos
  • Events
Login

Copyright © 2022 Cxociety Pte Ltd | Designed by Pixl

Subscribe