Cybersecurity for the lengthy haul: Defending legacy OT programs

Many manufacturing vegetation rely upon OT programs that keep in service for a few years. That long term can conceal important cybersecurity dangers.

17 Jun 2026
 • 
,
5 min. learn

In a producing plant constructed round uptime, a machine that has run the identical bodily course of for years with barely a hiccup earns one thing much less generally mentioned than a observe document of throughput: institutional belief. Over time, such quiet reliability has a manner of creating a sure sort of scrutiny really feel pointless, to the purpose that the tools would possibly develop into a safety blind spot.

For a very long time, there was a logic to ‘leaving effectively sufficient alone.’ A lot of the operational know-how (OT) in manufacturing was designed to maintain the bodily course of secure, and as soon as the manufacturing line labored, the smart transfer was to maintain the tools in fine condition in order that it may proceed to do its job.

Over time, nevertheless, the bottom beneath the machine has shifted, and the tools least amenable to vary now usually wants essentially the most safety round it. Many manufacturing environments at the moment face burning questions, together with: who can contact the tools from the community, how weak are the programs that the machines rely upon, and has the outdated cut price – don’t contact it if it really works – develop into a part of the chance?

Growing old out?

Two or three many years in the past, few in manufacturing misplaced sleep over internet-borne assaults. The risk both didn’t exist or was confined to a handful of nation-state targets. The truth that the commercial protocols had no safety baked in didn’t matter a lot – the machines had been remoted from IT and nothing untrusted may attain them. They merely labored, and there wasn’t a compelling purpose to the touch them.

Till there was. The ‘marriage’ of IT and OT, a trademark of digitization and Business 4.0, modified the equation as industrial management programs (ICS) had been related to networks that these programs had been by no means designed for. In fact, connecting manufacturing programs to enterprise networks delivers tangible advantages, however the safety implications – that programs as soon as protected had been all of the sudden not so – arrived extra quietly. The varied safety shortcomings – together with weak authentication, restricted logging, insecure defaults, and replace processes that will require expensive downtimes – all of the sudden turned liabilities.

The severity of the risk in the end revealed itself with damaging cyberattacks, such because the one which hit Jaguar Land Rover in 2025 and is now considered essentially the most damaging cyberattack in British historical past. Moreover, since provide chains run on tight schedules and little-to-no tolerance for error, halting a provider with just-in-time supply commitments spawns a full-blown manufacturing disaster that engulfs a protracted record of different firms.

The price of touching a working line

Interrupting a working manufacturing line to improve infrastructure with no apparent operational issues is mostly a tough promote. The belongings are too deeply embedded within the bodily course of; certainly, they’re usually trapped in what the world’s prime cybersecurity companies aptly name ‘self-established obsolescence.’

In the meantime, ransomware gangs that began paying critical consideration to manufacturing discovered an assault floor that had been increasing for years with out corresponding safety investments. Inflicting injury that impacts an operational surroundings can also be completely different from a pure IT breach. Ransomware operators, a few of whom are creating devoted OT capabilities, perceive this math and calibrate their calls for accordingly. Typically, infiltrating enterprise IT and letting the dependencies do the remaining is sufficient.

To make sure, the enterprise equation is shifting, albeit usually from the skin in. Provider contracts more and more comprise security-related provisions whereas cyber-insurers require proof of safety controls, to the purpose that organizations that may’t present it should swallow steep premiums or are left with out protection. Regulatory necessities are additionally tightening throughout plenty of jurisdictions; for instance, NIS2 imposes stricter cybersecurity necessities for Europe’s vital industries whereas the broad regulatory surroundings within the US additionally mandates particular actions that drive safety maturity in vital industries.

High cyberthreats up shut

Few safety distributors have been as near threats going through vital infrastructure as ESET. Over time, its risk analysis staff has peered inside a number of the most vital incidents on document – together with BlackEnergy that triggered a 4–6 hour energy outage for 230,000 folks in Ukraine in 2015, its successor, GreyEnergy, and Industroyer, the extremely customizable malware that speaks a number of industrial communication protocols utilized in vital infrastructure programs worldwide and induced a blackout in Kyiv in 2016. In 2022, ESET researchers additionally recognized Industroyer2, which took goal at Ukraine’s vitality infrastructure once more. As well as, ESET’s evaluation of NotPetya documented how an assault with no particular OT goal can nonetheless devastate organizations working operational know-how at scale, together with producers.

(Re)constructing safety round your vital tools

Naturally, you may’t shield what you may’t see, and correct asset visibility stays the inspiration of any self-respecting danger mitigation technique. Begin by mapping which programs in an surroundings are related and don’t have any safety protection, the place IT and OT networks intersect, which segments are unmonitored, and which manufacturing programs have fallen exterior any vendor help settlement. Given the complexity of cyber-physical programs, there clearly isn’t any one-size-fits-all strategy to asset stock and different duties.

Precise deployment structure additionally must be resolved early. Whether or not by design or because of buyer contracts, regulatory obligations or different causes, some manufacturing environments function below air-gap necessities. Safety platforms constructed primarily round cloud connectivity might not, subsequently, match the necessities or the finances.

In the meantime, off-the-peg safety instruments usually don’t effectively meet the enterprise necessities in legacy OT programs that run on older {hardware} and outdated working system variations. The instruments must be secure and unobtrusive sufficient to run on constrained programs with out affecting manufacturing. Community safety, for its half, earns its carry on tools that may’t run any safety agent in any respect, which in most manufacturing environments is under no circumstances an edge case.

Lengthy-term help addresses what the opposite layers can’t absolutely shut. When an ICS vendor ends improvement on a platform model, updates ultimately cease. The manufacturing programs working that model proceed to function for years, accumulating publicity to extra threats. Help commitments that outlast the unique vendor’s help window are the cybersecurity equal of signing a long-term components settlement for a automobile discontinued years in the past. The machine stays ‘roadworthy.’

Constructed to run for years

Manufacturing has a protracted historical past of engineering its manner out of crises. It’s additionally discovered plenty of onerous classes, together with that ignoring a identified drawback tends to shift – and sometimes multiply – the price connected to it. The cyberthreat to OT infrastructure is now well-documented, and the instruments to sort out it exist. On this business, this ought to be sufficient to get issues shifting – and, in the end, construct cyber-resilience into the business’s operations.