“These sectors are prime targets due to their high-pressure operational environments and data sensitivity,” said Amit Jaju, senior managing director at Ankura Consulting. “Manufacturing and construction have a low tolerance for downtime, making them more likely to pay to restore OT systems. Healthcare, on the other hand, holds valuable protected health information, and the risk to patient safety creates immense pressure to resolve incidents quickly. Insurance is a strategic target, holding aggregated risk data from thousands of other companies, making it a uniquely valuable data repository.”
These sectors have large operational footprints, high-value data, complex network environments, and are often under-resourced in cybersecurity relative to their threat exposure. “The complex supply chains with many vendors, shared credentials, and remote access create a broad attack surface. In addition, they usually have thin IT staffing at plants and branch sites,” said Pareekh Jain, CEO at EIIRTrend & Pareekh Consulting.
Conventional defenses aren’t enough
As ransomware actors are becoming increasingly adaptive to bypass defenses, experts acknowledge that conventional endpoint protection is no longer enough. CISOs must focus on multi-layered resilience, emphasizing zero-trust and least-privilege access to restrict lateral movement.
