Manufacturers Most Targeted, AI Operational Advisory, Google Apple Warning
All set for Christmas? And what about your cyber preparedness? Have you braced yourself well to safeguard your data and mental peace from the cybercrooks? If not, we are here to help!
Every week, we bring you a fresh dose of cyber bulletin to keep you updated and make you aware of the ongoing cyber scams. With threat actors rapidly penetrating our everyday lives, the only way to stay ahead and safe is to stay well-versed in the latest cyber incidents. So, here we are with December’s second edition.
This week, our bulletin will revolve around the top target of cyberattacks in 2025, CISA’s latest security guidelines for AI usage in operational technology, and the warnings issued by Google and Apple against state-sponsored cyberattacks.
Manufacturers topped the chart of the most targeted industry in 2025!
Cybercriminals love to target the manufacturing sector the most, and this trend continues even in 2025. The main reasons this sector is vulnerable are inadequate cyber protection, a lack of a cyber-educated workforce, and, most importantly, the ease with which operational disruptions can be created.
This year,51% of manufacturers were targeted by ransomware gangs. They were compelled to pay the ransom amount to be able to continue with the daily operations. Back in 2023, the major attacking vector was compromised user credentials, while in 2024, the vector was malicious emails. However, in 2025, the root cause is the exploitation of vulnerabilities.
Cyber experts like Rafe Pilling believe that pre-existing cybersecurity gaps, a lack of cyber awareness, and inadequate cybersecurity mechanisms add to the gravity of the situation.
Some of the major cyberattacks against the manufacturing sector this year involve the much-talked-about Jaguar Land Rover incident. This cyberattack cost the automobile company a whopping$1.7 billion to $2.4 billion. Something similar happened with Asahi Group Holdings, the popular food and beverage brand in Japan.
Multiple agencies issue a security advisory for AI usage in operational technology!
AI is being used extensively across different sectors and niches, and the operational technology is no different. So, multiple agencies have come together and issued security guidelines to help users with the best AI deployment techniques. This guideline was much-needed, as both AI and OT are highly sensitive to sophisticated threats.
CISA, NSA Artificial Intelligence Security Center, FBI, the German Federal Office for Information Security, the Canadian Center for Cybersecurity, the UK’s National Cybersecurity Center, the New Zealand National Cybersecurity Center, the Australian Signals Directorate’s Australian Cyber Security Center, and the Netherlands National Cyber Security Center have collaborated and co-authored the 25-page security guidelines.
As per the security guidelines, deploying LLMs can, in fact, boostefficiency and improve decision-making. However, using AI with OT “also introduces significant risks.” The ultimate goal of the guidelines is to help operators have a better understanding and knowledge of AI and its usage in OT ecosystems.
Google and Apple warn users against a state-linked threat campaign that has already affected 150 countries
A state-backed threat campaign is doing the rounds and has already impacted Google and Apple users across 150 nations. Both Google and Apple have shared fresh threat alerts for their global users. The alert focuses on the sophisticated nature of the threat campaigns and the penetration of commercial spyware.
Apple shared the latest alerts on 2nd December. This time, they didn’t reveal the number of affected people. Apple sends out such threat alerts only when it has confirmation of deliberate targeting of any individual by state-backed cybercrooks. Google also shared its threat alerts on 3rd December.
Apple and Google accounts across Egypt, Angola, Pakistan, Saudi Arabia, Tajikistan, etc. have also been notified.
Now the alerts have created upheaval among journalists and public officials, leading to political investigations. Experts believe that such threat notifications play a crucial role in alerting potential victims. In fact, such alerts help cybersecurity experts to launch deeper investigations and reveal intricate attack patterns. Such alerts empower cybersecurity teams to investigate deeper and uncover complex attack patterns, strengthening email defenses through DMARC, SPF, and DKIM.
This latest threat campaign underscores the growing difficulty of preventing the spyware industry. It is the same sector that provides a consistent supply of sophisticated tools to state-backed threat groups. Therefore, such early warning systems by tech giants actually offer a layer of protection to the victims.
Google and Apple’s persistent threat alerts hint towards the fact that the threat landscape continues to evolve, and the intricate network of commercial spyware is quite active as of now.
If you are a Google or Apple user, then you must take these threat alerts very seriously. Practice cyber hygiene and do not give any message or email the benefit of the doubt. If you notice any suspicious activity, get in touch with the concerned cybersecurity authorities without any delay.
