Location
- Asia Pacific
  
  Australia - English
  
  China - Chinese
  
  India - English
  
  Japan - Japanese
  
  New Zealand - English
- Europe
  
  Czech Republic - English
  
  Denmark - English
  
  France - French
  
  Germany - German
  
  Italy - Italian
  
  Netherlands - Dutch
  
  Norway - English
  
  Poland - English
  
  Romania - English
  
  Spain - Spanish
  
  Sweden - English
  
  United Kingdom - English
- Middle East
  
  Egypt - English
  
  Saudi Arabia - English
  
  United Arab Emirates - English
- North America
  
  United States - English
|
Contact
|

Currency:

Localize your Content

You can set your preferred currency for this account.

Choose a Currency
Currency
CHOOSE YOUR CURRENCY
Update Currency

Changing Currency will cause your current cart to be deleted. Click OK to proceed.

To Keep your current cart, click CLOSE and then save your cart before changing currency.

- Sign InSIGN IN TO ACCOUNT
  
  Close Side Navigation
  
  Back
  
  Create an Account
  
  My Legacy Account
  
  Sign in to MyBuildings
- Close Side Navigation
  
  Account
  
  My Account
  
  My Profile
  
  My Orders
  
  My Returns
  
  Invoices
  
  My Quotes
  
  Saved Carts
  
  My Contracts
  
  Case History
  
  Work Order History
  
  My Legacy Account
  
  Return Request
  
  SIGN OUT
Bulk Order

BUILDING AUTOMATION

Five Global Cybersecurity Trends to Watch in 2025

Technological advancement has ushered in a new wave of innovation and efficiency—but it has also opened the door to vulnerabilities that cyber attackers are eager to exploit. With billions in damages and reputational costs at stake, businesses must evolve their security posture to match these emerging threats.

As cybersecurity continues to evolve in 2025, organizations around the world will have to rethink their approach to protecting their most critical assets and operations. Here are five cybersecurity trends to watch in 2025 and beyond.

1: Attacks on operational technology will increase

No longer content to target IT, cyber attackers are increasingly taking aim at critical operational technology (OT) systems. Prominent examples like the Colonial Pipeline ^[i] and MGM Grand ^[ii] attacks demonstrate the way that threat actors are now more focused on completely shutting down facility operations instead of just stealing information.

This shift shows how cybercriminals and state-sponsored groups are evolving their tactics to inflict a more direct, crippling impact on business operations globally. In 2025, protecting OT systems from these types of targeted, disruptive attacks will be a major cybersecurity challenge for industrial organizations.

2: Cybersecurity regulation will intensify

Globally, governments are recognizing the systemic risks posed by attacks and are taking a more active and collaborative role in driving cybersecurity best practices. This will significantly impact the way that organizations approach security. For instance, there are now regulations like the European Union’s NIS2 Directive ^[iii]that can hold executives personally liable if appropriate security measures are not implemented at their organizations. This will drive stronger collaboration among government and the C-suite, boards and cybersecurity leaders.

In the U.S., there are new SEC rules ^[iv] that require prompt reporting of cyberattacks to provide greater protection for investors. Meanwhile, Australia is set to implement stringent cyber regulations of its own through the Security of Critical Infrastructure (SOCI) Act ^[v]. Though SOCI was first enacted in 2018, the grace period for compliance ended in August 2024. This means that going forward, Australian organizations in critical infrastructure sectors will now be required to comply with this enforceable regulation or face potential fines.

Overall, organizations across the globe will have to closely monitor evolving government regulations and align their security strategies accordingly to avoid penalties and reputational damage in the coming year.

3: Asset visibility will improve

In 2025, a key cybersecurity challenge for organizations, particularly building operators, will be gaining full visibility into the myriad connected assets on their networks. Many building owners struggle to identify all the connected devices, from security cameras to HVAC systems to access control panels, which make up their OT infrastructure. Without a clear understanding of their complete asset inventory, organizations are unable to effectively defend against threats. Attackers who gain access to unmonitored systems can disrupt critical building functions and cripple operations.

Honeywell’s Cyber Insights is an OT-focused solution designed to help provide building operators with near real-time visibility into their full asset landscape. It delivers the comprehensive asset discovery and management that is essential for protecting OT environments in 2025 and beyond.

4: AI’s role in security will grow

In 2025, there will be greater reliance on AI-powered solutions to enhance cybersecurity capabilities. For example, in the building operations space, AI can be used to automate patch management and mitigate disruptions. Instead of simply deploying patches, AI can analyze the risks and impacts, and selectively apply patch updates in a way that minimizes downtime.

AI is also enhancing security monitoring and incident response. For example, AI can help in analyzing log data to quickly identify true threats and prioritize the most critical issues. This allows organizations to eliminate false positives and respond to incidents faster and more effectively.

5: OT security expertise will be in demand

As cyberattacks are increasingly targeted at OT systems, organizations are recognizing the critical need for security teams to deeply understand OT infrastructure and its unique vulnerabilities. Traditional IT personnel often lack the specialized knowledge required to secure OT assets like HVAC, access control and building management systems.

Going forward, security leaders must make sure that their teams can identify and mitigate risks across the full IT-OT convergence. This includes understanding OT communication protocols, equipment architectures and the potential cascading impacts of disruptions. Without comprehensive OT security expertise, organizations remain dangerously exposed to attacks that could cripple critical systems and operations.

Honeywell is here to help

Connect with a Honeywell expert today to learn more about how industrial organizations can gain real-time visibility into cyberthreats and improve their overall security posture.

[i] Reuters, One password allowed hackers to disrupt Colonial Pipeline CEO tells senators [Accessed Nov. 21, 2024]

[ii] CNN, Casino giant MGM expects $100 million hit from hack that led to data breach [Accessed Nov. 21, 2024]

[iii] European Commission, Questions and Answers: Directive on Security of Network and Information systems, the first EU-wide legislation on cybersecurity [Accessed Nov. 21, 2024]

[iv] U.S. Securities and Exchange Commission, SEC Adopts Rules on Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure by Public Companies [Accessed Nov. 21, 2024]

[v] Australian Government Department of Home Affairs, Security of Critical Infrastructure Act 2018 [Accessed Nov. 21, 2024]

Cybersecurity