Summary: On Tuesday, OT cybersecurity company Claroty released a report titled “State of CPS Security: OT Exposures 2025”. The report highlights the risks to operational technology (OT) systems within critical infrastructure are becoming increasingly hostile. The threat environment is complicated by Chinese adversaries integrating malicious tools into U.S. military and corporate networks, as well as penetrating telecommunications and internet service providers to conduct surveillance on American citizens.

Analyst Comment: Among nearly one million OT devices examined in the research, 12% possess Known Exploited Vulnerabilities (KEVs) and 40% of the organizations studied have some of these assets insecurely connected to the internet. These challenges will continue to escalate as the digital transformation continues to drive the interconnectivity of OT assets, particularly in the water sector.

Original Source: https://claroty.com/resources/reports/state-of-cps-security-ot-exposures-2025

Additional Reading:

• Claroty exposes OT security crisis, reveals insecure Internet connections amid rising ransomware threats

Related WaterISAC PIRs: 6, 7