Trustwave SpiderLabs Research: Cybersecurity Challenges for Energy and Utilities in 2025

67% of credential access techniques used in energy and utilities sector attacks were brute force.

19% of ransomware attacks against energy and utilities sector were conducted by Hunters International in H2 2024.

There was an 80% year-over-year increase in ransomware activity in energy and utilities sector.

84% of attacks against energy and utilities sector originated from phishing.

$500,000 is the average financial impact of a data breach within the utilities sector.

47% of ransomware attacks against energy and utilities sector were in the United States.

The number of vulnerable points in US electrical networks is increasing by approximately 60 per day.

96% of attackers targeting energy and utilities sector relied on remote services to move laterally.