Indian manufacturers (specifically in automotive components, pharma formulations, and chemicals) are facing a wave of ransomware campaigns. Operational Technology (OT) networks that run factory floor machines are often left unprotected. Use this checklist to baseline your defenses.
1. OT and IT Network Segmentation
Ensure that your factory floor machinery network (OT) is strictly segregated from the corporate office network (IT). If a corporate employee opens a malicious email attachment, the ransomware should never be able to reach the SCADA or CNC controllers.
2. Regular Offline (Air-Gapped) Backups
Ransomware attackers will locate and delete online network backups first. Maintain physical backups on local drives disconnected from the internet. Test your backup recovery times quarterly.
3. Physical Port Restrictions
Disable USB and external port storage access on all machinery control panels. Malicious code is frequently introduced by external technicians or staff using infected USB drives on the factory floor.
4. Multi-Factor Authentication (MFA) on ERP and Admin Access
Ensure all systems managing supply chain details, payroll, or partner communications require MFA before access is granted.
5. Formal Incident Response Playbook
Every plant manager must know exactly what to do during a cyber incident. Who disconnects the network? Who contacts customer support? What are the regulatory reporting timelines?
6. Perform Regular VAPT Audits
Bring in certified professionals to test external facing servers, firewalls, and internal networks. Patching critical security gaps proactively prevents costly operational downtime.
7. Custom Phishing Exercises for Procurement & Finance Teams
These units are targeted by fake vendor billing modifications. Upskill them to double-verify payment changes through out-of-band communication.
8. Restrict Remote Access
Ensure vendor remote-maintenance connections use secure VPNs with strict session limits instead of persistent unmonitored links.
9. Keep SCADA Systems Patched
Even legacy machinery control software can often be secured using specialized firewall shields. Do not leave machines exposed directly to the local office router.
10. Maintain ISO 27001 Certification
Establishing an Information Security Management System (ISMS) ensures that security remains a continuous business process, not just a one-off audit.
