Cyberattacks threaten production sites. Effective data protection is essential. How can modern backup strategies and version control help companies avoid production outages and become more resilient?
In the private sector, backups are normality, but unfortunately still too rare in the industry: Backups can prevent companies from irretrievably losing important data.
Stefan Jesse is Group CEO and spokesperson of the Executive Board at AMDT.
More and more production facilities are facing attacks from cybercriminals. According to the current Threat Intelligence Report, the proportion of hacker attacks on manufacturing plants and industrial companies rose to 41 percent in the first half of 2024. In the previous year, the proportion was still 20 percent. Among the affected companies are prominent names like the battery manufacturer Varta or the automotive company Volkswagen, which faced alleged hacker attacks from China. The European Union has recognized the potential threat and aims to improve network and information security in various sectors such as energy, transport, or banking, as well as in production and processing with the NIS-2 directive.
In addition to external threats, internal manufacturing errors can also lead to costly rejects or recalls and thus to a loss of reputation. Companies, therefore, need security strategies that comprehensively protect both IT components that control data and OT components that operate hardware. But what is the status quo of industrial companies in Germany? What can they learn from global IT disruptions like the Crowdstrike incident? And why is version control so important as part of a disaster recovery plan?
More production resilience through disaster recovery and version control
There are many documented cases where seemingly small errors have led to massive economic consequences. The following example clearly illustrates this: A cleaning agent manufacturer produced five million bottles of household cleaner over several weeks, which were then shipped to North America. However, because a particular additive was not included in the production, the product was not only unusable but also harmful to health. An employee made a typo, which resulted in an error creeping into the machine control configuration.
Since even short downtimes can lead to enormous costs, quickly restarting production is of essential importance. Ideally, a disaster recovery strategy employs backup and versioning software. This allows snapshots of the project and program files of an industrial production control system to be taken at specific times. These can be conducted, for example, at the start of a shift or at any other meaningful time. In the event of a disruptive incident, the current version can be compared with any other version, and a desired state can be restored.
IT/OT interface as a gateway
In modern industrial enterprises, the combination of information technology (IT) and operational technology (OT) is essential. While IT components control the data, OT components operate the hardware. Unfortunately, traditional IT security mechanisms often do not work in OT facilities, making them attractive entry points for attackers.
Production environments are often very complex and fragmented because they include multiple device families from manufacturers such as Siemens, Rockwell, Fanuc, or Mitsubishi. Additionally, some control systems run on Windows XP or even older operating systems. Many companies attempt to tackle this heterogeneity with network segregation. This means building an IT fence around the industrial control systems. However, even if the pasture's fence is secure, the sheep are far from safe.
Double protection: electric fence and sheep guard
A practical example: One of the world's largest dairy companies operates a dairy plant in Europe where a tanker truck full of milk is processed every two minutes—24 hours a day, seven days a week. The milk producer's very advanced technology works with a shop floor template based on a Cisco Catalyst switcher. Since this OT component could serve as the main entry point, it must be protected with backups and version controls. By combining the switcher with the backup and versioning software Octoplant, the setup can be monitored in any Network Operation Center. Thus, to stay with the imagery, both the pasture fence and the sheep are protected.
Lessons from the Crowdstrike mishap—no backup, no mercy
The Crowdstrike incident led to significant disruption. Domain controllers had to be restored, which naturally play a central role in Active Directory domains. But what lessons can we learn from the global IT disruption? In the brave new world of AI, we still try to optimize that last ounce. However, we should first do our homework. What is common practice on personal smartphones, creating a backup of one's own data, should also be standard in the industry. Unfortunately, the saying holds true: No backup, no mercy. Additionally, an overview of all deployed assets and version control that versions all software inventories is of great importance.
A practical example from not too distant past: An automobile manufacturer with a production facility the size of a small town used to secure backups on USB sticks before introducing Octoplant. Engineers would ride a bicycle to the machine, make the backup on a stick, collect them in a basket, and then register them into the file system. It is obvious that such a system reaches its limits.
Date: 08.12.2025
Naturally, we always handle your personal data responsibly. Any personal data we receive from you is processed in accordance with applicable data protection legislation. For detailed information please see our privacy policy.
Consent to the use of data for promotional purposes
I hereby consent to Vogel Communications Group GmbH & Co. KG, Max-Planck-Str. 7-9, 97082 Würzburg including any affiliated companies according to §§ 15 et seq. AktG (hereafter: Vogel Communications Group) using my e-mail address to send editorial newsletters. A list of all affiliated companies can be found here
Newsletter content may include all products and services of any companies mentioned above, including for example specialist journals and books, events and fairs as well as event-related products and services, print and digital media offers and services such as additional (editorial) newsletters, raffles, lead campaigns, market research both online and offline, specialist webportals and e-learning offers. In case my personal telephone number has also been collected, it may be used for offers of aforementioned products, for services of the companies mentioned above, and market research purposes.
Additionally, my consent also includes the processing of my email address and telephone number for data matching for marketing purposes with select advertising partners such as LinkedIn, Google, and Meta. For this, Vogel Communications Group may transmit said data in hashed form to the advertising partners who then use said data to determine whether I am also a member of the mentioned advertising partner portals. Vogel Communications Group uses this feature for the purposes of re-targeting (up-selling, cross-selling, and customer loyalty), generating so-called look-alike audiences for acquisition of new customers, and as basis for exclusion for on-going advertising campaigns. Further information can be found in section “data matching for marketing purposes”.
In case I access protected data on Internet portals of Vogel Communications Group including any affiliated companies according to §§ 15 et seq. AktG, I need to provide further data in order to register for the access to such content. In return for this free access to editorial content, my data may be used in accordance with this consent for the purposes stated here. This does not apply to data matching for marketing purposes.
Right of revocation
I understand that I can revoke my consent at will. My revocation does not change the lawfulness of data processing that was conducted based on my consent leading up to my revocation. One option to declare my revocation is to use the contact form found at https://contact.vogel.de. In case I no longer wish to receive certain newsletters, I have subscribed to, I can also click on the unsubscribe link included at the end of a newsletter. Further information regarding my right of revocation and the implementation of it as well as the consequences of my revocation can be found in the data protection declaration, section editorial newsletter.
Fast restart of production
Industrial robots have long since made their way into the automotive industry and typically feature a small box reminiscent of a Raspberry Pi. If the program code stored here is incorrect, the robot will do what seems right to it. To prevent this, the code must be secured and versioned as a whole. This way, it can be compared with the last working version. The comparison shows where the coordinates deviate. Has the temperature changed, the speed, or the throughput? It is important to back up the entire production code as well as the files uploaded to the machine in the language of production control. This is precisely what modern backup and versioning tools achieve.
Disaster recovery also promotes ecological sustainability
The initial example of the misproduced household cleaners vividly shows the economic impact that a lack of security in production processes can have. Added to this is the ecological component. In this case, an individual error and a missing warning mechanism resulted in millions of bottles of household cleaner being not only unusable. The fact that 2,000 trucks drove through North America also led to unnecessary greenhouse gas emissions.
The case highlights the overall economic threat posed by a lack of supply chain resilience. Not too long ago, toilet paper was a highly sought-after commodity for which some resorted to unscrupulous means. What if baby formula is in short supply next time? Therefore, highly automated logistics or production systems should also be protected with software. A logistics company from the States, for example, processes more than 30,000 packages per hour at each of its logistics centers. During the Covid period, this logistics company ensured that vaccines were delivered in the correct quality. Modern backup and versioning solutions thus also help ensure high supply chain resilience.
How we can avoid the most common mistakes
The assumption that IT will handle everything is a fallacy. Those responsible for information processing are often unfamiliar with protocols like Profinet or Profibus. In addition, access to the devices is often very individual and not known to IT. Industrial control systems are much more heterogeneous and complex compared to IT devices. A lot of domain-specific and in-depth technical OT knowledge is necessary, as well as the understanding that all control systems truly need to be secured. Those responsible should not rely on solutions deemed "good enough," as backups sometimes occur on USB sticks or with attached versioning notes on the file system, which can prove inadequate in an emergency.
As part of NIS2, a significant improvement can be expected in this regard, as companies must demonstrate that they are up to date with the latest technology. The required audit protocol, for example, provides this necessary evidence by showing that a backup of production data is available at any time and at any status.
:quality(80)/p7i.vogel.de/wcms/88/53/8853f7df2fe47a3d2c6f1879f6ac38e6/newsimage417073-1500x843v1v1.jpeg "Measuring setup for friction stir welding: Modular acoustic measuring system with flexibly positioned microphones for recording tool wear and process deviations in real time. (Image:Fraunhofer IDMT)")
:quality(80)/p7i.vogel.de/wcms/28/75/28751a17e2bcca46e53a1e7b8a84c433/schmersal-tiepner-029-6749x3796v1v1.jpeg "Tiepner's compact system produces ID cards made of laminated plastic, which are used as customer cards, ID cards or cheque cards, among other things. Left in the picture: Christian Höltge, Managing Director of Tiepner GmbH. (Image:Tiepner GmbH)")
:quality(80)/p7i.vogel.de/wcms/68/44/6844f9ae752767034c525d8dcdffe13e/0129139999v1.jpeg "Won-jong Kim, CEO of DN Solutions, and Dr. Thorsten Schmidt, CEO of the Heller Group, agree: \"This strategic partnership strengthens the position of both companies in precision technology.\" (Image:Heller)")
:quality(80)/p7i.vogel.de/wcms/c1/5b/c15b198344a31c237d35f919235fa73e/blechnext-20maas-1161x653v1v1.png "Blechnext offers sheet metal processors the Machine-as-a-Service partner model with a Tru Laser Center 7030 from Trumpf. (Image:Blechnext)")
:quality(80)/p7i.vogel.de/wcms/ba/a0/baa0c49f17909b10766fb582d1f8b531/sandvik-olp-case-study-hero-1377x774v1v1.png "With Visual Components' offline programming software, Sandvik has more than halved robot programming time, improved welding quality and repeatability, and increased robot cell utilization. (Image:Visual Components)")
:quality(80)/p7i.vogel.de/wcms/29/1e/291eaf788c2befc4d71686cd260fef3b/0129214102v1.jpeg "RobCo's robots consist of flexibly combinable hardware modules and use AI software for learning. (Image:RobCo)")
:quality(80)/p7i.vogel.de/wcms/de/75/de750a367b39ed3167210c6941b067b6/0129059153v1.jpeg "Figure 1: Preparation for the Cyber Resilience Act. By December 2027, device manufacturers must have implemented a series of mandatory measures. (Image:Microchip)")
:quality(80)/p7i.vogel.de/wcms/e6/e0/e6e0dae794b9068953f24ace08b6b0ca/0113143253v1.jpeg "In our China Market Insider, we regularly provide you with relevant information directly from China. (Image:© Eisenhans - stock.adobe.com)")
:quality(80)/p7i.vogel.de/wcms/0e/52/0e52ee794e7d24f8ddcb3e230f192e08/wscad-electrix-ai-2026-fill-cabinet-04-zoom-en-1720x967v1v1.png "The use of artificial intelligence makes it possible to systematically automate enclosure planning for the first time. This brings a number of advantages. (Image:WSCAD)")
:quality(80)/p7i.vogel.de/wcms/08/7e/087e5cbeb0039395c8759c8fdb54e24c/0129120874v1.jpeg "Digital consistency: Using Fresenius as an example, the article shows how companies benefit from integrated development processes. (Image:Fresenius Medical Care)")
:quality(80)/p7i.vogel.de/wcms/3d/63/3d637efb6dfefc529f08738bab2dc968/adobestock-1271004590--c2-a9-20the-20pixel-20store-20-e2-80-93-20stock-adobe-com-ki-generiert-2787x1568v1v1.jpeg "We present three innovations from the PLM and ALM world. (Image:The Pixel Store stock.adobe.com AI-generated)"){kind=tracking}
:quality(80)/p7i.vogel.de/wcms/59/37/5937b916a3d8bcbe2984391be7c18d8e/0129152959v1.jpeg "Mathworks and dSpace deepen their partnership: Road models created with RoadRunner can now be used directly in ASM OpenX. (Image:dSpac)")
:quality(80)/p7i.vogel.de/wcms/22/dd/22dd3f89e27950caea78d18b4a41766c/0129157014v1.jpeg "Volkswagen's first self-developed zonal electronics architecture goes into series production in China (Image:Volkswagen)")
:quality(80)/p7i.vogel.de/wcms/f5/22/f52293d339d8c952563eb00876da7cab/0129137154v1.jpeg "Joby Aviation is preparing for the first wave of pilot training for eVTOLs with CAE flight simulators. (Image:Joby Aviation)")
:quality(80)/p7i.vogel.de/wcms/36/c6/36c67f2e5e8fcb78c5a5b8d07673eec6/0129154312v1.jpeg "Yuchai intends to use its flywheel system - on the right-hand side of the engine - primarily in commercial vehicles. (Image:Yuchai)")
:quality(80)/p7i.vogel.de/wcms/2e/62/2e62e5977481169dd2a0301ab847dc2b/0129163687v1.jpeg "Increasing the voltage reduces the cable cross-sections and therefore the copper requirement considerably. (Image:Fraunhofer ISE)")
:quality(80)/p7i.vogel.de/wcms/5d/73/5d73b37d605e3d5f44de11d22447cedd/0129209328v1.jpeg "Agent BigEarth is based on a novel combination of several AI modules that work together as specialized sub-agents. (Image:BIFOLD)")
:quality(80)/p7i.vogel.de/wcms/d8/f8/d8f8fc64e23a1ed726fc8ac7ab697747/0129101600v1.jpeg "A new imaging technology makes it possible to detect early signs of heart disease through the skin. This opens up new markets for portable imaging systems. (Image:freely licensed)")
:quality(80)/p7i.vogel.de/wcms/95/e7/95e77e1c2ad5ee51222a6e287609643e/0129119186v1.jpeg "Photo of Micron's \"Site 3\" in Singapore, where NAND flash memory is manufactured. The memory manufacturer plans to invest a further 24 billion US dollars in the construction of an additional fab in Southeast Asia. The new plant is scheduled to go into operation by 2028. (Image:Micron)")
:fill(fff,0)/images.vogel.de/vogelonline/companyimg/76800/76895/65.jpg "FAULHABER_120mm.jpg ()")
:fill(fff,0)/p7i.vogel.de/companies/67/eb/67eba621ef6ea/logo2.png "logo2 (Wuxi InfiMotion)"){kind=logo}
:quality(80)/p7i.vogel.de/wcms/56/a0/56a0b540c47f6131d98539ff0648dcee/0128235887v1.jpeg "New EU laws such as the Cyber Resilience Act and NIS-2 require companies to systematically protect their digital infrastructure. (Picture: ©AD - stock.adobe.com)")
:quality(80)/p7i.vogel.de/wcms/f4/61/f4615bc4550548c72a754f3e2c58f859/0128580377v1.jpeg "According to a VDMA survey, companies expect cybersecurity incidents to increase in the coming years. (Picture: ©valerybrozhinsky - stock.adobe.com)")