Manufacturing accounts for more than two-thirds of all ransomware victims.

63% of manufacturing enterprises prefer building on existing, open-source tools for AI agent orchestration.

The manufacturing industry accounted for 456 ransomware incidents totaling approximately $284.6 million in reported payments, while the financial services industry accounted for 432 incidents totaling approximately $365.6 million, and the healthcare industry accounted for 389 incidents totaling approximately $305.4 million.

Manufacturing represented 41.5% of all Trellix detections of threats targeting operational technology from April 1 to September 30, 2025.

Manufacturing and Transportation sectors accounted for over 40% of total IoT malware attacks, with each sector representing 20.2% of all observed attacks.

Approximately 23% of all reported cases of Qilin ransomware affected the manufacturing sector.

From January 1 to September 1, 2025, there were 4,701 recorded ransomware incidents, with 2,332 incidents (50%) targeting critical sectors such as manufacturing, healthcare, energy, transportation, and financial services.

Ransomware attacks against the manufacturing sector surged from 520 incidents in 2024 to 838 incidents in 2025, marking a 61% increase.

Manufacturing has been the #1 targeted industry for ransomware attacks for four consecutive years, according to the IBM X-Force 2025 Threat Intelligence Index.

Ransomware attacks in the manufacturing sector surged by 61% from 520 incidents to 838 incidents year-over-year, marking the steepest growth among all sectors.

Manufacturing accounted for 22% of all undisclosed ransomware attacks in Q3 2025.

There were 252 publicly claimed manufacturing organizations that were victims of ransomware attacks in Q3 2025.

There were 200 publicly claimed manufacturing organizations that were victims of ransomware attacks in Q2 2025.

In Q3 2025, manufacturing organizations experienced a 26% increase in ransomware attacks.

75% of manufacturing companies have critical vulnerabilities with a CVSS score of 8 or higher.

There has been a 9% increase in ransomware attacks on manufacturing companies compared to the previous year.

For companies earning between $100 million and $300 million, manufacturing accounts for 30% of ransomware victims.

Among companies earning over $1 billion, manufacturing makes up a staggering 38.9% of ransomware victims.

65% of manufacturing companies have at least one vulnerability listed in the CISA Known Exploited Vulnerabilities (KEV) Catalog.

Manufacturing remains ransomware's number one target. It has held the number one position for the fourth year in a row.