SecurityBrief UK - Technology news for CISOs & cybersecurity decision-makers
United Kingdom
Guides
#
cloud security
#
cybersecurity
#
endpoint protection
#
firewalls
#
ransomware
Search
Story image
#
Network Security
#
Cybersecurity
#
Legislation

Claroty predicts increased focus on OT cybersecurity by 2025

Today
Author image
By Kaleah Salmon, Journalist

Claroty has unveiled its cybersecurity predictions for 2025, highlighting significant developments in the protection of Operational Technology (OT) and critical infrastructure sectors.

Leon Poggioli, ANZ Regional Director at Claroty, outlines several key areas for the coming year. "A major cyberattack will be executed on critical infrastructure as part of a wartime scenario and this will enter mainstream news, as world leaders recognise the need to protect their domestic critical infrastructure from being attacked by an act of war from their enemies," he stated.

Proposed legislation to safeguard Australia's critical infrastructure sectors is expected to come into effect, spotlighting organisations that have neglected their cybersecurity investments.

This increased focus on cybersecurity is anticipated to influence political discourse as well. "A successful attack on critical infrastructure will also become an election issue in some jurisdictions as citizens demand their governments to protect the critical infrastructure they rely on from cyberattacks," Poggioli added.

An emphasis on a "back to basics" approach to OT cybersecurity is expected in response to potential undetected attacks on critical infrastructure organisations. Poggioli cited a past example, saying, "In 2025, we will see at least one 'invisible' cyber attack on a critical infrastructure organisation, i.e. where the attack proceeds completely undetected due to an organisation's lack of knowledge regarding its network and connected devices. An example of this was the Danish Power grid attack in 2023, where one electricity operator didn't even realise it had a device in its network with a critical vulnerability." This issue underscores the necessity for organisations to map their attack surfaces and maintain up-to-date inventories of connected assets.

Identity Access Governance within OT environments will also be a significant area of focus. "Organisations will place a renewed focus on user access in their Operational Technology (OT) environments — targeting both internal and external users," Poggioli explained. This shift will involve moving from traditional methods such as jumpboxes and VPNs to more secure, fit-for-purpose solutions designed for "Just in Time" Access.

Moreover, unsanctioned remote access methods, including hidden 4G modems and FTP servers, will be targeted, alongside the elimination of password sharing in favour of improved user identity and control methods.

Claroty's cybersecurity predictions for 2025 highlight the growing need to protect Operational Technology (OT) and critical infrastructure from evolving cyber threats. With the potential for cyberattacks to impact national security, organisations must prioritise securing access, mapping attack surfaces, and addressing vulnerabilities in OT environments. As the landscape shifts, businesses will need to remain proactive to ensure resilience and safeguard their critical systems against emerging risks.

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X
Related stories
Shoppers warned of cyber risks during holiday deals
Ransomware attacks rise by 19% in October according to NCC Group
Cybercriminals target shoppers with 38 million phishing scams
Saviynt appoints Tim Mooney as executive advisor
Ransomware attacks rise with construction sector most hit
Top stories
Commvault named leader in Forrester Wave Q4 2024 report
Qodea acquires tmc3 to bolster UK cyber security efforts
NCSC warns of sophisticated scams during Black Friday
Ransomware attack exposes retail vulnerabilities globally
CIOs warned of AI over-reliance in cybersecurity defence