Ransomware attacks that targeted the industrial sector increased by 46% from Q4 2024 to Q1 2025, according to Honeywell’s 2025 Cybersecurity Threat Report.
Already 40% of the 2024 Total
The appliance, electrical, and electronics manufacturer conducted its research by evaluating approximately 79 million files, 250 billion logs, and 4,600 blocked incidents across its global install base. The report found about 2,500 potential ransomware attacks in Q1 2025, nearly 40% of the total recorded throughout 2024.
Trojan Spike
Honeywell also noted that the W32.Worm.Ramnit Trojan, a type of malware disguised as a legitimate file or program, made up 37% of files blocked by the company’s Secure Media Exchange. Honeywell said this finding indicates a 3,000% increase in the Trojan’s usage compared to Q4 2024.
Additionally, Secure Media Exchange detected more than 1,800 USB threats in Q1 2025, including 124 original threats. This reportedly follows a 33% rise in USB malware activity during 2023 and a 700% year-over-year spike in 2022.
Honeywell’s analysis included threats spread through Human Interface Device plug-in hardware, including charging cords, laptops, mice, and other tools used during software updates for on-site systems.
Using AI and Zero Trust
Amid these threats, Honeywell Director of Engineering Paul Smith said that using artificial intelligence and Zero Trust security analysis can help detect issues faster and support informed, proactive decisions.
Image credit: needmoremars/Shutterstock
