The manufacturing industry accounted for 456 ransomware incidents totaling approximately $284.6 million in reported payments, while the financial services industry accounted for 432 incidents totaling approximately $365.6 million, and the healthcare industry accounted for 389 incidents totaling approximately $305.4 million.

Manufacturing represented 41.5% of all Trellix detections of threats targeting operational technology from April 1 to September 30, 2025.

Manufacturing and Transportation sectors accounted for over 40% of total IoT malware attacks, with each sector representing 20.2% of all observed attacks.

Approximately 23% of all reported cases of Qilin ransomware affected the manufacturing sector.

Manufacturing has been the #1 targeted industry for ransomware attacks for four consecutive years, according to the IBM X-Force 2025 Threat Intelligence Index.

From January 1 to September 1, 2025, there were 4,701 recorded ransomware incidents, with 2,332 incidents (50%) targeting critical sectors such as manufacturing, healthcare, energy, transportation, and financial services.

Ransomware attacks against the manufacturing sector surged from 520 incidents in 2024 to 838 incidents in 2025, marking a 61% increase.

Ransomware attacks in the manufacturing sector surged by 61% from 520 incidents to 838 incidents year-over-year, marking the steepest growth among all sectors.

Manufacturing accounted for 22% of all undisclosed ransomware attacks in Q3 2025.

There were 252 publicly claimed manufacturing organizations that were victims of ransomware attacks in Q3 2025.

There were 200 publicly claimed manufacturing organizations that were victims of ransomware attacks in Q2 2025.

In Q3 2025, manufacturing organizations experienced a 26% increase in ransomware attacks.

Manufacturing remains ransomware's number one target. It has held the number one position for the fourth year in a row.

For companies earning between $100 million and $300 million, manufacturing accounts for 30% of ransomware victims.

There has been a 9% increase in ransomware attacks on manufacturing companies compared to the previous year.

75% of manufacturing companies have critical vulnerabilities with a CVSS score of 8 or higher.

Among companies earning over $1 billion, manufacturing makes up a staggering 38.9% of ransomware victims.

Among companies with less than $20 million, manufacturing is the second targeted industry at 17%.

65% of manufacturing companies have at least one vulnerability listed in the CISA Known Exploited Vulnerabilities (KEV) Catalog.

65% of AI users in manufacturing engage with AI daily.