Claroty is named 2025 Best in KLAS for Healthcare IoT Security for the 5th year in a row!
Get the Report
ES Flag Icon SPA FR Flag Icon FRE IT Flag Icon ITA BR Flag Icon POR JA Flag Icon 日本語 CN Flag Icon 简体中文 TW Flag Icon 繁體中文 KR Flag Icon 한국어
Request a Demo
Claroty Toggle Search

Report

State of CPS Security: OT Exposures 2025

Team82’s analysis of the riskiest operational technology (OT) exposures putting critical infrastructure organizations in the crosshairs of adversaries.

View the Report

Advanced adversaries have ramped up cyberattacks targeting operational technology. APTs such as Volt Typhoon, Sandworm, and the CyberA3ngers are using purpose-built malicious tools to disrupt or modify processes managed by industrial control systems (ICS), and represent the greatest threats to public safety, and national and economic security. 

In this report, Claroty’s research group, Team82, lays out the greatest risks associated with OT and ICS beyond merely assessing the criticality of a vulnerability. By exploring exposures such as whether devices contain known exploited vulnerabilities—including those linked to active ransomware campaigns—and whether those devices are insecurely connected to the internet, security leaders have a road map for prioritizing mitigations and remediations at a reduced cost. 

Share
LinkedIn Twitter Facebook

Interested in learning about Claroty's Cybersecurity Solutions?

Request a Demo

Key Findings

Known Exploited Vulnerabilities in OT Devices

Team82 analyzed close to one million OT devices within 270 organizations; the data in this report spans a number of industries under the umbrellas of manufacturing, logistics and transportation, and natural resources.

Download Report

Quantifying the Riskiest Exposures

The riskiest OT exposures cannot be measured in critical CVEs alone. Doing so would place undue burden on asset owners and operators trying to boil an ocean of unpatched vulnerabilities; fixing them at any kind of scale would be done at a tremendous human and monetary resource drain.

We instead break down those exposures to smaller subsets of vulnerable devices, allowing leaders to consider remediation of the highest-risk devices first where the threat of exploitation is greatest, below.

Download report

Claroty
LinkedIn Twitter YouTube Facebook