DeNexus revealed findings from an extensive analysis of 254 industrial sites in North America, Europe, and Australia, showing that 92% are significantly exposed to cyber risks from remote services, with potential losses of up to $1.5 million per site. Using their DeRISK platform, the study underscores the urgent need to strengthen security in industrial remote access systems.
“The industrial sector’s rapid adoption of remote access technology has created a perfect storm for cyber risk,” said Jose Seara, CEO of DeNexus. “Our research reveals a stark reality – 92% of industrial sites are operating with significant cyber vulnerabilities that could lead to substantial financial losses. This isn’t just about technology – it’s about protecting critical infrastructure that powers our economy.”
Key Findings include:
- 88% of analyzed sites identified remote services (a MITRE ATT&CK® initial access vector) as their most significant cybersecurity risk
- Manufacturing sector shows highest exposure, with average expected losses of $875,000
- Renewable energy sector demonstrates lower but still significant risk, with expected losses around $150,000
- Average annual expected loss related to remote services reaches $223,000 per site
To mitigate remote access vulnerabilities, DeNexus recommends implementing frequent vulnerability scanning and patching on at least a monthly basis, along with strict authentication measures including Multi-Factor Authentication. Organizations should also deploy just-in-time authorization for remote access, strengthen network segmentation between OT and IT systems, and maintain robust password management with regular updates and account lockout policies.
The study’s timing is particularly relevant as recent research from Claroty in 2024 indicates that organizations are deploying too many remote access solutions within OT environments. This over deployment creates excessive risk and operational challenges. Additionally, separate research by Takepoint Research found that remote services were the primary attack vector in 17 out of 24 major cyber-attacks on OT environments.
“Remote services continue to represent a critical vulnerability in industrial cybersecurity,” says Jonathon Gordon, Industry Analyst at Takepoint Research. “To mitigate the growing cyber risks associated with remote access, industrial enterprises should consider solutions like DeNexus to accurately evaluate and manage incremental risks.”
The full report includes detailed analysis of risk exposure across different industrial sectors and provides comprehensive recommendations for securing remote access in industrial environments.
Related News:
DeNexus Raises $17.5M in Series A to Transform Cyber Risk Management
