ENISA Warns of Escalating OT Threats
October 22, 2025 – Published on Nexus Connect
The European Union Agency for Cybersecurity (ENISA) has issued a stark warning about mounting risks facing critical infrastructure, revealing how threat actors have intensified targeting of operational technology (OT) systems with sophisticated malware and persistent campaigns that could disrupt essential services across the continent.
ENISA’s newly released Threat Landscape 2025 report, analyzing nearly 4,900 cybersecurity incidents between July 2024 and June 2025, identifies critical infrastructure and industrial control systems (ICS) as prime targets for both state-aligned threat groups and hacktivist organizations. The findings underscore a troubling convergence: advanced techniques once reserved for nation-state espionage are now being deployed with alarming frequency against power grids, transportation networks, and manufacturing facilities.
“Hacktivists increasingly view OT as a pressure point, not for ransom, but for visibility; these are symbolic attacks to make an operational impact,” Daniel Gaeta, managing OT security engineer at GuidePoint Security, said.
What makes the current threat environment particularly concerning is the reported emergence of purpose-built malware explicitly designed to compromise industrial control systems. In June 2025, a new hacktivist group calling itself Infrastructure Destruction Squad reportedly debuted VoltRuptor, an ICS-specific malware package offering advanced multi-protocol support, persistence capabilities, and anti-forensics features that security teams may find exceptionally difficult to detect.
Read more HERE.