Manufacturers adapt to more AI-driven cyberattacks and increasing automation

The manufacturing sector has been a top target for cyberattacks in recent years, highlighting the critical need for robust cybersecurity measures to safeguard sensitive information and maintain operational integrity.

A growing challenge in the manufacturing industry is the increased use of artificial intelligence by attackers, says David Carter, an industrials senior analyst at RSM US LLP. With advanced AI, cybercriminals are creating more sophisticated phishing emails and other forms of attack that can deceive even the most vigilant employees. This underscores the need for enhanced critical thinking and awareness among personnel to recognize and thwart such threats.

“I expect we will see a continued increase of those types of attacks; generative AI is going to make it simpler for attackers to write compelling emails that are hard to distinguish as threats,” Carter says. “Companies will have to ramp up training for end users and make changes to business processes to adapt to these evolving attack techniques.”

However, the integration of AI solutions in cybersecurity tools is also a bright spot. By leveraging AI, manufacturers can better detect and respond to cyberthreats, improving their overall security posture. This dual use of AI—as a tool for both attackers and defenders—represents a critical paradox for cybersecurity moving forward.

Data from the Q1 2025 RSM US Middle Market Business Index survey indicates that the percentage of companies—across all sectors, not just manufacturing—experiencing breaches in 2024 declined compared to 2023. Only 18% of companies reported a breach, down from 28%. Ransomware attacks also declined, with 26% of companies affected compared to 30% previously.

"I hope this decrease is sustained and means that the investments companies have been making are finally paying off,” says Carter.

Companies are also grappling with how best to integrate advanced technologies, often driven by increasing pressure to maintain cost efficiency. The adoption of automation, while beneficial for improving margins, also opens new avenues for potential cyberthreats, as automated systems can be vulnerable to exploitation if not adequately protected. Risk maturity assessments and penetration testing can be important ways to determine where an organization may have security gaps, both in traditional business networks and in the often-overlooked plant networks.

Manufacturers may not have the enormous amounts of personally identifiable information held by health care organizations or financial services companies, but they are rich in data from the shop floor and overall production operations. As manufacturers increasingly offer smart products solutions in addition to their traditional products, that data will only increase, providing opportunities for value-added insights and services, but also risks.

“As manufacturers build smarter products, they also need to build security into those products to ensure they aren’t introducing new weaknesses,” says Carter.

Smaller manufacturing organizations face unique challenges compared to their larger counterparts. Limited resources and budgets often constrain their ability to implement comprehensive cybersecurity measures. This disparity underscores the importance of tailored cybersecurity strategies that address the specific needs and limitations of smaller enterprises while ensuring they remain protected against evolving threats.