Check Point Software Technologies Ltd has released its Manufacturing Threat Landscape 2025 report, highlighting a sharp escalation in cyber threats targeting the global manufacturing sector, with India emerging as the Asia-Pacific epicentre of ransomware activity. The findings point to a rapidly evolving threat environment, where cyberattacks are becoming more frequent, sophisticated, and disruptive.
According to the report, cyber incidents targeting manufacturers worldwide rose by 56 percent, increasing from 937 cases in 2024 to 1,466 in 2025. India recorded 201 incidents, positioning it among the most targeted geographies, second only to the United States. Notably, 65 percent of affected Indian organizations reportedly paid ransom demands, with average payouts reaching $1.35 million.
The study highlights that manufacturing organizations in India have faced up to 2,786 cyberattacks per week over the past six months, underscoring the persistent and high-frequency nature of these threats. The convergence of ransomware, supply chain vulnerabilities, and weaknesses in operational technology (OT) systems has significantly increased risk across industrial ecosystems.
The report identifies several structural factors contributing to the sector’s vulnerability. Legacy OT infrastructure, including industrial control systems and IoT devices, often lacks modern security safeguards, making them attractive targets. Expanding supply chains have also created multiple entry points for attackers, while the rise of ransomware-as-a-service (RaaS) has enabled cybercriminals to scale operations rapidly.
Threat actors targeting the manufacturing sector include both financially motivated ransomware groups and geopolitically aligned entities. Groups such as Akira, Qilin, and Play are leveraging techniques like phishing, credential theft, and exploitation of unpatched systems to infiltrate networks and disrupt operations. In parallel, hacktivist and state-linked actors are conducting denial-of-service attacks and reconnaissance activities, often aligned with geopolitical developments.
Ransomware remains the dominant attack vector, accounting for a majority of incidents. However, attackers are increasingly adopting diverse strategies, including data exfiltration, extortion-only models, and direct operational disruption. Common entry points include exploited vulnerabilities, phishing campaigns, compromised credentials, and supply chain weaknesses.
The report emphasizes the need for manufacturers to adopt a proactive and comprehensive cybersecurity approach. Recommended measures include implementing Zero Trust architectures, strengthening identity and access controls, accelerating vulnerability management, deploying secure backup systems, and enhancing employee awareness.
Looking ahead, cyber threats are expected to intensify further, driven by AI-enabled attack automation and increasing geopolitical tensions. As India continues to strengthen its position as a global manufacturing hub, building cyber resilience will be critical to ensuring operational continuity and safeguarding supply chains.
Check Point Software Technologies Ltd. is a global leader in AI-powered, cloud-delivered cybersecurity, safeguarding over 100,000 organizations worldwide. Through its Infinity Platform, Check Point harnesses AI-driven intelligence to enhance cybersecurity efficiency and accuracy, enabling proactive threat detection and rapid response.
The company’s comprehensive security suite includes Check Point Harmony for workspace protection, Check Point CloudGuard for cloud security, Check Point Quantum for network defense, and Check Point Infinity Core Services for collaborative security operations. With industry-leading threat prevention capabilities, Check Point ensures smarter, faster, and more resilient cybersecurity solutions for businesses across the globe.
