Support
December 4, 2024 20 mins
Unveiling the Dark Side: Common Attacks and Vulnerabilities in Industrial Control Systems
Introduction to Industrial Cybersecurity. Industrial control systems are crucial for managing critical infrastructure. The growth of Industry 4.0 and Industrial Internet of Things (IIoT) heightens the vulnerability of these systems to cyber threats.
1. Introduction to Industrial Cybersecurity
Industrial control systems are crucial for managing critical infrastructure. The growth of Industry 4.0 and Industrial Internet of Things (IIoT) heightens the vulnerability of these systems to cyber threats. Industrial Control System (“ICS”) emphasize data availability over integrity and confidentiality, in contrast to IT networks. This distinction requires customized security strategies that address the specific needs and vulnerabilities of ICS environments. The integration of cloud services and virtualization further expands the attack surface, creating exploitable gaps. [1]
Recent research highlights the growing exposure of key ICS communication protocols such as Modbus, KNX, and BACnet, particularly in critical sectors such as manufacturing, utilities, and building automation. Although fewer ICS systems are directly internet-facing, these protocols remain highly vulnerable, especially in North America and Europe. The integration of Operational Technology (“OT”) with IT systems amplifies risks, highlighting the necessity for strong cybersecurity strategies. [2]
The assertion that an 'air gap' constitutes a foolproof security approach is misleading. While network segmentation can create security zones, achieving complete network separation is virtually impossible today. Modern systems often include wireless diagnostics and removable media, which can bypass air gaps. In addition, this myth overlooks the threat from insiders, authorized users who can cause harm. To effectively protect ICS environments, organizations must move beyond relying solely on air gaps and adopt a multilayered security approach, including continuous monitoring, employee training, and incident response planning [3].
2. General Attack Vectors in ICS
In January 2024, Shodan identified nearly 110,000 ICS devices [2], including more than 6,500 publicly exposed programming logic controllers (“PLC”), accessible online and using protocols such as Modbus and Siemens S7 [4]. These exposures lead to targeted attacks, such as those by the Iranian hacktivist group Cyber Av3ngers [5], [6], who attacked Unitronics PLCs globally, including at a water utility near Pittsburgh and a small water utility in Ireland, causing a two-day water supply disruption. [7]
To improve ICS security, we strongly urge the implementation of these decisive actions [8]:
- Change all default passwords.
- Disconnect PLCs from the Internet.
- Avoid using default TCP ports.
- Apply IP allow lists and packet filters.
- Back up configurations regularly for quick recovery.
- If remote access is necessary, implement a firewall and VPN with multifactor authentication to securely manage network access securely.
For OT/ICS systems not directly exposed, attackers often employ more sophisticated methods to infiltrate networks. They might start with phishing or watering hole attacks to gain initial access, followed by exploiting software vulnerabilities or using social engineering techniques. Once inside, attackers can move laterally, compromising operational computers, databases, manipulating data, or targeting communication between PLCs and field equipment. The most severe threats occur when attackers gain direct physical access or remote control over critical components, enabling destructive actions such as firmware modification or sabotage.
While many attacks on ICS are financially motivated, others are driven by hacktivist groups and can escalate into complex operations involving espionage or sabotage. Espionage-driven attacks focus on gathering sensitive information or intellectual property, using advanced malware and social engineering to remain undetected. Financially motivated attacks may involve direct tampering, unauthorized system use, or manipulating physical parameters (e.g., temperature or pressure) to cause damage or alter production output.
The sophistication of cyber threats has grown with the emergence of rootkits, digitally signed obfuscated malwares, and the commercialization of 0-day vulnerabilities. The increasing risks from AutoRun malware, remote access attacks, and the rise of "hacking as a service" underscore the urgent need for robust cybersecurity actions. These services make advanced malwares and cyberattacks more accessible, emphasizing the need for strengthened defenses. In this evolving threat landscape, it is strongly recommended that organizations implement comprehensive strategies to protect their ICS assets from increasingly sophisticated threats. [1], [9]
3. Special Focus Areas
Maritime Cybersecurity: Navigating the New Digital Waters
The maritime industry, crucial for global trade and economic stability, is increasingly targeted by sophisticated cyberattacks. As ships and ports become more connected through digital systems, they are becoming more targets for cyber threats that take advantage of the unique ways that maritime technology works. The industry has seen a large increase in cybersecurity breaches, especially in operational technology as it becomes more digital. A research study shows a 900% increase [10] in these breaches, highlighting the increasing risks as ships become more connected to the Internet.
Autonomous ships present new opportunities for cyberattacks within the maritime industry. Currently limited to smaller vessels, they are expected to be used in global shipping by 2030, increasing the risk [49]. These ships rely on sensors and communication systems, making them prime targets for hackers. Past attacks on navigation systems, such as ECDIS and GPS, have shown how vulnerable these systems are. As autonomous ships become more common, they introduce new risks. One major concern is the potential for compromised vessels to be used as weapons. [11]
Although traditional cyber threats [12], [13] such as phishing and ransomware [14], [15] continue to pose significant risks, the advent of specialized malware specifically designed for maritime systems represents an escalating concern. These advanced threats have the potential to infiltrate critical control systems, such as the Steering Gear Control System (“SGCS”) [16] as detailed below or compromising the integrity of data displayed on a radar system [17]. This type of infiltration can lead to catastrophic outcomes like collisions or groundings, reminiscent of the Ever Given incident [18] in the Suez Canal. Recognizing these vulnerabilities and formulating robust defense strategies are essential for protecting the maritime sector from advancing cyber threats.
Key Vulnerabilities in Maritime Systems:
- Physical Access and Unauthorized Personnel: Ships, particularly during port stops or maintenance activities, may be vulnerable to physical access by unauthorized individuals. These actors could install malware [19] directly onto the ship’s systems through infected removable media or by physically tampering with the equipment. Even with stringent security measures, the sheer complexity of maritime operations can create opportunities for such breaches, especially when security protocols are less rigorously enforced. [12]
- Supply Chain Attacks: The risk of supply chain compromises is particularly significant in the maritime industry, where components and systems are sourced from various global suppliers. Malware can be embedded in hardware components or software updates before they are even installed on the ship, making these systems vulnerable long before they are operational. [12]
- Remote Access Exploitation: Many modern ships use remote access systems for management, diagnostics, and maintenance. While these systems enhance operational efficiency, they also introduce significant cybersecurity risks. Unauthorized access to the ship's network can be achieved by exploiting vulnerabilities in remote access software, enabling the deployment of malware or disruption of essential systems from a distance. This method circumvents the need for physical access, making it a preferred attack vector for sophisticated cyber threats. [12]
- Social Engineering: Human operators are often the weakest link in the cybersecurity chain, making social engineering a highly effective attack strategy. Attackers may send phishing emails to crew members, embedding malicious files or links to fake websites designed to harvest credentials. Once a user unknowingly engages with these malicious elements, malware can be introduced into the ship’s network. Social engineering tactics may also involve planting infected USB drives or persuading personnel to visit misleading websites that encourage the disclosure of sensitive information. [12]
- Targeting Integrated and Legacy Systems: Ships often operate with a mix of modern and legacy systems that are interconnected, which can be exploited by attackers. Legacy systems, in particular, may lack adequate cybersecurity defenses, making them vulnerable entry points. Once an intruder infiltrates a segment of the vessel's systems, they are capable of moving laterally among other interconnected systems, executing malware or interfering with operations on an extensive level. The complex nature of these integrated systems, paired with diverse degrees of security across various components, creates an environment that may facilitate sophisticated cyberattacks.[12]
- Insecure Communication Protocols and ICS Vulnerabilities: Many Industrial Control Systems onboard ships rely on communication protocols such as Modbus and NMEA[17], which are essential for integrating various systems, but often lack robust security features such as encryption and authentication. These insecure protocols make ICS susceptible to a variety of attacks, including interception, data manipulation, and injection of malicious commands. Once attackers gain access through these insecure channels, they can exploit ICS to disrupt critical functions such as navigation, engine control, and steering gear control system, leading to potentially catastrophic outcomes. [16]
Exploring Advanced Standalone Malware Targeting Maritime SGCS: A Realistic Simulation
Researchers developed and tested malware targeting the Steering Gear Control System on modern ships in a realistic simulation under typical maritime constraints, such as 4 GB of RAM and two CPU cores limited to 5% utilization. The malware autonomously manipulated the SGCS by injecting malicious Modbus packets, exploiting vulnerabilities in protocols such as NMEA 0183 and Modbus. It caused unintended steering changes, posing serious navigational risks. [16]
Such an attack could result in incidents like collisions or groundings, as demonstrated by the Ever Given case. [20] This underscores the need for defense-in-depth cybersecurity strategies, regular vulnerability assessments, comprehensive training, and advanced monitoring tools for early threat detection and response.
Satellites in the Cyber Crosshairs: Securing Space
The rapid expansion of space technology and the surge in satellite deployments [21] for communication, navigation, and surveillance have dramatically increased the surface area for potential cyberattacks. As nations and private companies race to launch satellites, the complexity and number of systems in space have grown, but cybersecurity measures have lagged behind. Many satellites utilize commercial components [22], [23] that often lack space-grade security, thereby heightening vulnerabilities.
Developing and launching a satellite can take decades, yet they remain in orbit while technology and cybersecurity threats evolve rapidly. This mismatch leaves both satellites and their ground stations exposed to sophisticated attacks that could disrupt critical services worldwide, including GPS, communication, and military operations.[24]
The Potential Consequences of a Satellite Hack
If a satellite is hacked, the consequences could be dire, affecting not only the targeted satellite, but potentially disrupting critical services globally. An adversary might compromise a satellite's propulsion system, leading to orbital anomalies and the risk of collisions with other satellites. Attackers could jam communication systems, leading to the loss of internet, GPS services, or even military communications. Malicious actors could intercept telemetry information, exploit satellite subsystems, transmit fake data, and gain control over a part of the satellite infrastructure. This would enable them to potentially seize control of satellite infrastructure, leading to the disabling of satellites or even redirecting them for harmful purposes. Significant financial losses and national security risks may arise from such scenarios. Dependent infrastructures may experience cascading failures as a result.
Vulnerabilities in Aerospace Systems and Common Attack Methods
Aerospace systems, including satellites, are vulnerable across four main attack surfaces [25], [43]:
- Ground Segment: As the most critical and vulnerable segment, the ground segment connects all other components and is often targeted by various attacks. Vulnerabilities include unauthorized access, which allows malicious users with escalated privileges to disrupt operations, access private data, and misuse systems. The network is vulnerable to malware, DoS attacks, unauthorized access, and data breaches, while communication channels are at risk of interference through electromagnetic sources, jamming, intercepting, and spoofing.
- Link Segment: The communication channels between the user and the space segments are susceptible to jamming, spoofing, and other communication attacks. Key vulnerabilities include unauthorized control of the satellite’s orbit, command injection, data tampering, executing malicious payloads. Uplink and downlink channels are particularly at risk, as these attacks can intercept, alter, or disrupt data exchanged between satellites and their control systems.
- User Segment: This segment is particularly at risk of commercial service interruptions, especially for satellite television, radio, and other user-facing services. Additionally, vulnerabilities include inadequate encryption mechanisms, firmware flaws, and insufficient authentication, which can expose user devices to cyberattacks. Network risks involve data flow interception and insider threats using user equipment to gain unauthorized access.
- Space Segment: Vulnerabilities include subsystem compromise, computer onboard attacks, and internal communication breaches. These attacks can disrupt the satellite's operations or alter its functionality.
Why Threat Actors Focus on Ground Control
Malicious actors are increasingly targeting the more accessible ground segment, which manages satellite communication. Unlike direct attacks on spacecraft, which require significant resources and are easily detectable due to the power and radio frequencies involved, vulnerabilities in the Space Link Extension (“SLE”) protocol [26], [44], [45] between Control Centres and Ground Stations can be exploited to launch Denial of Service (“DoS”) attacks or manipulate communications [25]. This allows attackers to gain indirect control over satellites, making the ground segment a prime target for cyberattacks.
Figure 1: CCSDS SLE Security Communications Threats [44]
The Future of Aerospace Security
As aerospace cyber threats evolve, quantum cryptography is becoming a vital defense, providing virtually unbreakable encryption through quantum key distribution (QKD) [27]. Leading this innovation are the QEYSSat [24], [25] and Eagle-1 [28] satellites, both set for launch between 2025 and 2026, which will advance quantum-secure satellite communications.
In addition, AES-256 encryption [29] and optical inter-satellite links [30], [31], [32] maintain strong security in current systems. SpaceX's Moonlighter satellite [33], [34], designed for cybersecurity testing, enhances real-time defense capabilities. New protocols such as QPEP [34] tackle high-latency encryption, and with satellites integrating into the 5G ecosystem [35], [36], [37], [38], [39], reducing LEO latency and upgrading encryption standards are crucial for securing future global communications.
4. Advanced Industrial Cyber Threats: Case Studies and Attacks
To understand the impact of cyber threats on critical infrastructure and satellite systems, real-world case studies reveal serious vulnerabilities in the industrial and aerospace sectors. These incidents highlight the urgent need for stronger cybersecurity defenses to protect essential global operations.
- Stuxnet Attack on Nuclear Facilities (2010): T Stuxnet worm is a significant cyber-attack in history. It specifically targeted Iran's nuclear facilities, particularly the centrifuges used for uranium enrichment, by manipulating their operational speeds, causing significant physical damage. This incident marked a significant turning point in cyber warfare, showcasing the ability of cyber threats to impose substantial harm on vital infrastructure. [47]
- Ukraine Power Grid (2015): A cyberattack on Ukraine's electrical infrastructure caused a significant power outage, affecting more than 200,000 people. Malicious actors compromised grid control systems through spear phishing, allowing them to remotely disable substations and disrupt electricity distribution. This incident highlighted the vulnerability of essential infrastructure to cyberattacks and the devastating consequences for society [50].
- Rosat X-ray Satellite (2000): The Rosat X-ray satellite, a collaborative initiative between the United States and Germany for astronomical exploration, was subjected to a cyber-attack that jeopardized its solar panel array. The hackers' actions caused the satellite's batteries to overheat and fail, resulting in its 2011 re-entry and crash on Earth. This case emphasizes the severe risks associated with vulnerabilities in satellite systems, where even a single compromised component can result in the total failure of the mission [48].
- Starlink during the Russia-Ukraine Conflict (2022): During the conflict between Russia and Ukraine, the Starlink satellites operating near Russia faced numerous cyberattacks, including jamming and spoofing attempts. These attacks exposed the susceptibility of satellite communication links during geopolitical crises, demonstrating how satellites can be strategically targeted in conflicts. This case reinforces the need for heightened cybersecurity protocols to protect satellite communications.[40]
- Cyber Av3ngers Attacks on OT/ICS Infrastructure (2023): The recent wave of cyberattacks by a group known as Cyber Av3ngers has exposed the widespread vulnerabilities in operational technology (OT) and industrial control systems (ICS) around the world. One such attack led to a two-day outage in Ireland, but the repercussions were felt globally, affecting utilities across multiple countries and sectors. These incidents highlight the pressing need for comprehensive cybersecurity strategies and proactive steps to defend the OT / ICS infrastructure against increasingly sophisticated cyber threats [5],[6],[7].
- Ransomware Gang Publishes Data Allegedly Stolen From Maritime Firm Royal Dirkzwager on March 6, 2023 [41]
- 1000 shipping vessels affected by ransomware attack on 7 January 2023. [14]
- Japan's space agency hit by series of cyberattacks (2024) [42]
Conclusions and future trends
The growing threat of cyberattacks on industrial and aerospace systems requires robust defenses. Incidents like Stuxnet and satellite vulnerabilities in conflicts show the real dangers these attacks pose.
Future trends, such as quantum cryptography, AI-driven threat detection, and stronger international cybersecurity standards, will be crucial for securing critical infrastructure. Although risks are high, advanced technology and proactive actions can help protect against these evolving threats.
References
[1] ‘Securing the Industrial Backbone: Cybersecurity Threats, Vulnerabilities, and Mitigation Strategies in Control and Automation Systems’, Deleted J., vol. 20, no. 7s, pp. 1111–1120, May 2024, doi: 10.52783/jes.3604.
[2] F. R.-V. Labs, ‘The global threat evolution of internet-exposed OT/ICS’, Forescout. Accessed: Aug. 30, 2024. [Online]. Available: https://www.forescout.com/blog/cybersecurity-threat-evolution-of-otics-and-iot-devices/
[3] E. D. Knapp, ‘2 - About Industrial Networks’, in Industrial Network Security (Third Edition), E. D. Knapp, Ed., Syngress, 2024, pp. 11–43. doi: 10.1016/B978-0-443-13737-2.00014-2.
[4] E. López-Morales and U. Planta, ‘SoK: Security of Programmable Logic Controllers’.
[5] Ylabs, ‘GhostSec, the hacktivist collective targeting ICSs’, YLabs. Accessed: Aug. 30, 2024. [Online]. Available: https://labs.yarix.com/2023/08/ghostsec-the-hacktivist-collective-targeting-icss/
[6] ‘Dark Web Profile: Cyber Av3ngers’, SOCRadar® Cyber Intelligence Inc. Accessed: Aug. 30, 2024. [Online]. Available: https://socradar.io/dark-web-profile-cyber-av3ngers/
[7] E. Kovacs, ‘Cyberattack on Irish Utility Cuts Off Water Supply for Two Days’, SecurityWeek. Accessed: Aug. 30, 2024. [Online]. Available: https://www.securityweek.com/cyberattack-on-irish-utility-cuts-off-water-supply-for-two-days/
[8] ‘Exploitation of Unitronics PLCs used in Water and Wastewater Systems | CISA’. Accessed: Aug. 29, 2024. [Online]. Available: https://www.cisa.gov/news-events/alerts/2023/11/28/exploitation-unitronics-plcs-used-water-and-wastewater-systems
[9] E. D. Knapp, ‘3 - Industrial Cybersecurity History and Trends’, in Industrial Network Security (Third Edition), E. D. Knapp, Ed., Syngress, 2024, pp. 45–64. doi: 10.1016/B978-0-443-13737-2.00009-9.
[10] F. Akpan, G. Bendiab, S. Shiaeles, S. Karamperidis, and M. Michaloliakos, ‘Cybersecurity Challenges in the Maritime Sector’, Network, vol. 2, no. 1, Art. no. 1, Mar. 2022, doi: 10.3390/network2010009.
[11] M. Ammar and I. A. Khan, ‘Cyber Attacks on Maritime Assets and their Impacts on Health and Safety Aboard: A Holistic View’, arXiv.org. Accessed: Sep. 04, 2024. [Online]. Available: https://arxiv.org/abs/2407.08406v1
[12] ‘Guidelines on Cyber Security Onboard Ships, Version Four’. Accessed: Aug. 30, 2024. [Online]. Available: https://www.ics-shipping.org/resource/guidelines-on-cyber-security-onboard-ships-version-four/
[13] ‘TransNav Journal - BRAT: A BRidge Attack Tool for Cyber Security Assessments of Maritime Systems’. Accessed: Aug. 30, 2024. [Online]. Available: https://www.transnav.eu/Article_BRAT:_A_BRidge_Attack_Tool_for_Hemminghaus,57,1092.html
[14] ‘1000 Shipping Vessels Impacted by Ransomware Attack - Infosecurity Magazine’. Accessed: Sep. 01, 2024. [Online]. Available: https://www.infosecurity-magazine.com/news/shipping-vessels-ransomware-attack/
[15] K. Tsiakaraki, ‘Cyber security focus: Ransomware attacks is a prominent threat for maritime’, SAFETY4SEA. Accessed: Sep. 01, 2024. [Online]. Available: https://safety4sea.com/cm-cyber-security-focus-ransomware-attacks-is-a-prominent-threat-for-maritime/
[16] G. Longo, F. Lupia, A. Pugliese, and E. Russo, ‘Physics-aware targeted attacks against maritime industrial control systems’, J. Inf. Secur. Appl., vol. 82, p. 103724, May 2024, doi: 10.1016/j.jisa.2024.103724.
[17] G. Longo, E. Russo, A. Armando, and A. Merlo, ‘Attacking (and defending) the Maritime Radar System’, IEEE Trans. Inf. Forensics Secur., vol. 18, pp. 3575–3589, 2023, doi: 10.1109/TIFS.2023.3282132.
[18] S. Editor, ‘Ever Given: The grounding that changed the world’s view of shipping’, SAFETY4SEA. Accessed: Sep. 01, 2024. [Online]. Available: https://safety4sea.com/cm-ever-given-the-grounding-that-changed-the-worlds-view-of-shipping/
[19] O. Polikarovskykh, Y. Daus, D. Larin, and M. Tkachenko, ‘Systematization of Cyber Threats in Maritime Transport’, Secur. Infocommunication Syst. Internet Things, vol. 1, no. 1, Art. no. 1, Jun. 2023, doi: 10.31861/sisiot2023.1.01008.
[20] ‘“EVER GIVEN” in the Suez Canal: when is a binding contract concluded? - Andrew Carruth | Quadrant Chambers’. Accessed: Sep. 05, 2024. [Online]. Available: https://www.quadrantchambers.com/news/ever-given-suez-canal-when-binding-contract-concluded-andrew-carruth
[21] ‘Space is booming. Here’s how to embrace the $1.8 trillion opportunity’, World Economic Forum. Accessed: Sep. 04, 2024. [Online]. Available: https://www.weforum.org/agenda/2024/04/space-economy-technology-invest-rocket-opportunity/
[22] ‘COTS Components can be Used in Small Satellites’. Accessed: Sep. 05, 2024. [Online]. Available: https://bisresearch.com/news/satellite-commercial-off-the-shelf-components-enabling-innovation-in-space-technology-
[23] S. Research, ‘Satellite Commercial-Off-the-Shelf Components Market Size, Share and Forecast to 2031’. Accessed: Sep. 05, 2024. [Online]. Available: https://straitsresearch.com/report/satellite-commercial-off-the-shelf-components-market
[24] A. Ribeiro, ‘New Deloitte report addresses increasing danger of cyber threats in space, issues call to action’, Industrial Cyber. Accessed: Sep. 05, 2024. [Online]. Available: https://industrialcyber.co/reports/new-deloitte-report-addresses-increasing-danger-of-cyber-threats-in-space-issues-call-to-action/
[25] ‘Security Threats against Space Missions’, 2015, [Online]. Available: https://public.ccsds.org/Pubs/350x1g3.pdf
[26] T. Ohmüller, ‘Improving Security of Space Link Extension (SLE) Services’, May 2008.
[27] ‘National Security Agency/Central Security Service > Cybersecurity > Quantum Key Distribution (QKD) and Quantum Cryptography QC’. Accessed: Sep. 04, 2024. [Online]. Available: https://www.nsa.gov/Cybersecurity/Quantum-Key-Distribution-QKD-and-Quantum-Cryptography-QC/
[28] ‘Eagle-1’. Accessed: Sep. 04, 2024. [Online]. Available: https://www.esa.int/Applications/Connectivity_and_Secure_Communications/Eagle-1
[29] craig miles, ‘Satellite Encryption Techniques’, Yesway Communications. Accessed: Sep. 04, 2024. [Online]. Available: https://yesway.co.uk/satellite-encryption-techniques/
[30] A. King, ‘What is an optical inter-satellite link communication terminal?’, Iridian Spectral Technologies. Accessed: Sep. 04, 2024. [Online]. Available: https://www.iridian.ca/learning_center/light-notes/what-is-an-optical-inter-satellite-link-communication-terminal/
[31] D. Werner, ‘Intersatellite optical links will shake up the ground segment. But how soon and how fast is anyone’s guess.’, SpaceNews. Accessed: Sep. 04, 2024. [Online]. Available: https://spacenews.com/intersatellite-optical-links-will-shake-up-the-ground-segment-but-how-soon-and-how-fast-is-anyones-guess/
[32] L. Bernstein, ‘Inter-Satellite Links Are Making Space Networks a Reality’. Accessed: Sep. 04, 2024. [Online]. Available: https://www.kratosdefense.com/constellations/articles/inter-satellite-links-are-making-space-networks-a-reality
[33] ‘Moonlighter, the World’s First Hacking Test Bed in Space, to Launch with Five Other Small Satellites on SpaceX CRS-28’. Accessed: Sep. 04, 2024. [Online]. Available: https://www.issnationallab.org/spx28-moonlighter-cubesat-afrl/
[34] ‘Moonlighter – HACK-A-SAT 4’. Accessed: Sep. 04, 2024. [Online]. Available: https://hackasat.com/moonlighter/
[35] ‘Space for 5G’. Accessed: Sep. 04, 2024. [Online]. Available: https://connectivity.esa.int/space-5g
[36] ‘Satellites Role in 5G: The Future of 5G | AccelerComm’. Accessed: Sep. 04, 2024. [Online]. Available: https://www.accelercomm.com/news/satellites-role-in-the-future-of-5g
[37] ‘5G Satellite Spectrum - IEEE Future Networks’. Accessed: Sep. 04, 2024. [Online]. Available: https://futurenetworks.ieee.org/topics/5g-satellite-spectrum
[38] D. Meyer, ‘Hughes combines satellite, open RAN 5G for DoD “tactical edge”’, SDxCentral. Accessed: Sep. 04, 2024. [Online]. Available: https://www.sdxcentral.com/articles/interview/hughes-combines-satellite-open-ran-5g-for-dod-tactical-edge/2024/09/
[39] A. Turner, ‘Spain’s Sateliot to launch four 5G-IoT Satellites with SpaceX in July’, Mobile Europe. Accessed: Sep. 04, 2024. [Online]. Available: https://www.mobileeurope.co.uk/spains-sateliot-to-haunch-four-5g-iot-satellites-with-spacex-in-july/
[40] E. H. last updated, ‘Elon Musk says Russia is ramping up cyberattacks on SpaceX’s Starlink systems in Ukraine’, Space.com. Accessed: Sep. 04, 2024. [Online]. Available: https://www.space.com/starlink-russian-cyberattacks-ramp-up-efforts-elon-musk
[41] I. Arghire, ‘Ransomware Gang Publishes Data Allegedly Stolen From Maritime Firm Royal Dirkzwager’, SecurityWeek. Accessed: Sep. 04, 2024. [Online]. Available: https://www.securityweek.com/ransomware-gang-publishes-data-allegedly-stolen-from-maritime-firm-royal-dirkzwager/
[42] ‘Japan’s space agency hit by series of cyberattacks since last year, official says’. Accessed: Sep. 04, 2024. [Online]. Available: https://therecord.media/japan-cyberattacks-space-agency-series
[43] ‘Aerospace Cybersecurity: Satellite Hacking (W53)’. [Online]. Available: https://pentestmag.com/course/aerospace-cybersecurity-satellite-hacking-w53/
[44] ‘Ground Control to Major Threat: Hacking the Space Link Extension Protocol’. [Online]. Available: https://visionspace.com/hacking-sle/
[45] ‘Space Link Extension (SLE) Emulation for High-Throughput Network Communication’. [Online]. Available: https://ntrs.nasa.gov/api/citations/20140017058/downloads/20140017058.pdf
[46] ‘Jamming and Cyber Attacks: How Space is Being Targeted in Ukraine’. [Online]. Available: https://www.rusi.org/explore-our-research/publications/commentary/jamming-and-cyber-attacks-how-space-being-targeted-ukraine
[47] M. Baezner and P.Robin, ‘Stuxnet’, Feb. 2018. [Online]. Available: https://www.researchgate.net/publication/323199431_Stuxnet
[48] ‘Hackers could shut down satellites — or turn them into weapons’ [Online]. Available: https://www.astronomy.com/science/hackers-could-shut-down-satellites-or-turn-them-into-weapons/
[49] Rolls-Royce, ‘Autonomous ships - The next step’ [Online]. Available: https://www.rolls-royce.com/~/media/Files/R/Rolls-Royce/documents/%20customers/marine/ship-intel/rr-ship-intel-aawa-8pg.pdf
[50] Wired ‘Inside the Cunning, Unprecedented Hack of Ukraine's Power Grid’. [Online]. Available: https://www.wired.com/2016/03/inside-cunning-unprecedented-hack-ukraines-power-grid/
Explore More
-
Capability Overview
Cyber Resilience
About Cyber Solutions:
Aon’s Cyber Solutions offers holistic cyber risk management, unsurpassed investigative skills, and proprietary technologies to help clients uncover and quantify cyber risks, protect critical assets, and recover from cyber incidents.
General Disclaimer
This document is not intended to address any specific situation or to provide legal, regulatory, financial, or other advice. While care has been taken in the production of this document, Aon does not warrant, represent or guarantee the accuracy, adequacy, completeness or fitness for any purpose of the document or any part of it and can accept no liability for any loss incurred in any way by any person who may rely on it. Any recipient shall be responsible for the use to which it puts this document. This document has been compiled using information available to us up to its date of publication and is subject to any qualifications made in the document.
Terms of Use
The contents herein may not be reproduced, reused, reprinted or redistributed without the expressed written consent of Aon, unless otherwise authorized by Aon. To use information contained herein, please write to our team.
Aon's Better Being Podcast
Our Better Being podcast series, hosted by Aon Chief Wellbeing Officer Rachel Fellowes, explores wellbeing strategies and resilience. This season we cover human sustainability, kindness in the workplace, how to measure wellbeing, managing grief and more.
-
Podcast 23 mins
Better Being Series: Understanding Burnout in the Workplace -
Podcast 14 mins
Better Being Series: Why Nutrition Matters -
Podcast 10 mins
Better Being Series: Discover the ‘Blue Zones’ Where People Live Longer -
Podcast 20 mins
Better Being Series: Improving Your Financial Wellbeing -
Podcast 17 mins
Better Being Series: Are You Taking Care of Your Digital Wellbeing? -
Podcast 19 mins
On Aon Podcast: Better Being Series Dives into Women’s Health -
Podcast 29 mins
On Aon’s Better Being Series: The World Wellbeing Movement -
Podcast 28 mins
On Aon’s Better Being Series: Mental Health and Creating Kinder Cultures -
Podcast 25 mins
On Aon’s Better Being Series: Managing Loss and Grief -
Podcast 24 mins
On Aon’s Better Being Series: Measuring Wellbeing -
Podcast 25 mins
On Aon’s Better Being Series: Physical Wellbeing and Resilience -
Podcast 23 mins
On Aon’s Better Being Series: Human Sustainability
Aon Insights Series Asia
Expert Views on Today's Risk Capital and Human Capital Issues
-
Article 8 mins
Thriving in an Interconnected World: How the C-Suite Embraces Uncertainty -
Article 6 mins
Powering Progress: Collaborating to Build a Sustainable Future in Emerging Markets -
Article 5 mins
Building Business Resilience: Key Steps to Effectively Integrate Risk Management Across Your Organisation -
Article 7 mins
Why Humans Are the Essential Factor in the Success of Artificial Intelligence (AI) -
Article 5 mins
Leveraging Research and Expertise to Strengthen Your HR Strategy for 2025 and Beyond -
Article 5 mins
Managing Risk on the Energy Transition Journey -
Article 7 mins
The Role of Risk Management in the Age of Generative Artificial Intelligence -
Article 7 mins
Finding A Way In Asia Pacific's New Economic Reality -
Article 4 mins
Three Ways to Boost Value from Benefits: APAC Insights from LinkedIn
Aon Insights Series Pacific
Expert Views on Today's Risk Capital and Human Capital Issues
-
Article 3 mins
Article Title 1
Aon Insights Series UK
Expert Views on Today's Risk Capital and Human Capital Issues
-
Article 2 mins
Introduction: Clarity and Confidence to Make Better Decisions -
Article 2 mins
The Age of Rising Resilience – An Economic Outlook -
Article 3 mins
Building Resilience Against the Constant Cyber Threat -
Article 2 mins
Making Better Decisions – A Treasurer’s Perspective -
Article 2 mins
How to Balance the Conflicting Forces of Efficiency, Performance and Wellbeing -
Article 3 mins
Seizing the Opportunity: Building a Comprehensive Approach to Risk Transfer -
Article 2 mins
Tapping New Markets to Unlock Deal Value -
Article 5 mins
The Rise of the Skills-Based Organisation -
Article 2 mins
Creating a Fair and Equitable Workforce for Everyone -
Article 3 mins
The Year of the Vote: How Geopolitical Volatility Will Impact Businesses -
Article 2 mins
The Aon Difference
Client Trends 2025
Better Decisions Across Interconnected Risk and People Issues.
-
Article 3 mins
Acknowledging Our Complex Reality -
Article 10 mins
Trade in a Technology-Driven Future -
Article 9 mins
How AI and Workforce will Intersect: Navigating Risks and Opportunities -
Article 8 mins
Weather and Workforce: Employers Must Quantify the Risk -
Article 9 mins
Steering Trade and Supply Chains Amid Weather Challenges -
Report 13 mins
Trade Issues Confront Global Businesses on Multiple Fronts -
Report 19 mins
Technology is Driving Firms to Harness Opportunities and Defend Against Threats -
Report 19 mins
Climate Analytics Unlock Capital to Protect People and Property -
Report 14 mins
A Workforce in Transition Prepares to Meet a Host of Challenges
Construction and Infrastructure
The construction industry is under pressure from interconnected risks and notable macroeconomic developments. Learn how your organization can benefit from construction insurance and risk management.
-
Article 8 mins
How North American Construction Contractors Can Mitigate Emerging Risks -
Article 7 mins
Managing Construction Risks: 7 Risk Advisory Steps -
Article 7 mins
Unlocking Capacity and Capital in a Challenging Construction Risk Market -
Article 7 mins
Protecting North American Contractors from Extreme Heat Risks with Parametric -
Article 5 mins
How Climate Modeling Can Mitigate Risks and Improve Resilience in the Construction Industry -
Report 1 mins
Construction Risk Management Europe Report 2023 -
Article 8 mins
Parametric Can Help Mitigate Extreme Heat Risks for Contractors in EMEA -
Article 9 mins
How the Construction Industry is Navigating Climate Change -
Article 11 mins
Top Risks Facing Construction and Real Estate Organizations
Cyber Labs
Stay in the loop on today's most pressing cyber security matters.
-
Cyber Labs 5 mins
Securely Adopting Digital Assets and Web3 -
Cyber Labs 8 mins
Bring Your Own Installer: Bypassing EDR Through Agent Version Change Interruption -
Cyber Labs 17 mins
Maximizing value: How companies and pentesters can achieve more together -
Cyber Labs 7 mins
DNSForge – Relaying with Force -
Cyber Labs 14 mins
We’re All in This Together: The Case for Purple Teaming -
Cyber Labs 7 mins
Parsing ESXi Logs for Incident Response with QELP -
Cyber Labs 5 mins
Parsing Jenkins Configuration Files for Forensics and Fun -
Cyber Labs 10 mins
Emerging Risks in Third-Party AI Solutions and How to Help Address Them -
Cyber Labs 20 mins
Unveiling the Dark Side: Common Attacks and Vulnerabilities in Industrial Control Systems -
Cyber Labs 9 mins
Mounted Guest EDR Bypass -
Cyber Labs 6 mins
Optimizing Your Cyber Resilience Strategy Through CISO and CRO Connectivity -
Cyber Labs 9 mins
Bypassing EDR through Retrosigned Drivers and System Time Manipulation -
Cyber Labs 10 mins
DNSForge – Responding with Force -
Cyber Labs 7 mins
Unveiling "sedexp": A Stealthy Linux Malware Exploiting udev Rules -
Cyber Labs 3 mins
Command Injection and Path Traversal in StoneFly Storage Concentrator -
Cyber Labs 7 mins
Adopt an AI Approach with Confidence, for CISOs and CIOs -
Cyber Labs 3 mins
Responding to the CrowdStrike Outage: Implications for Cyber and Technology Professionals -
Cyber Labs 10 mins
DUALITY Part II - Initial Access and Tradecraft Improvements -
Cyber Labs 17 mins
Cracking Into Password Requirements -
Cyber Labs 57 mins
DUALITY: Advanced Red Team Persistence through Self-Reinfecting DLL Backdoors for Unyielding Control
Cyber Resilience
Our Cyber Resilience collection gives you access to Aon’s latest insights on the evolving landscape of cyber threats and risk mitigation measures. Reach out to our experts to discuss how to make the right decisions to strengthen your organization’s cyber resilience.
-
Article 8 mins
Cyber and E&O Market Conditions Remain Favorable Amid Emerging Global Risks -
Article 7 mins
How to Navigate AI-Driven Cyber Risks -
Article 9 mins
Building Resilience in a Buyer-Friendly Cyber and E&O Market -
Article 11 mins
A Middle Market Roadmap for Cyber Resilience -
Article 7 mins
Lessons Learned from the CrowdStrike Outage: 5 Strategies to Build Cyber Resilience -
Article 8 mins
Responding to Cyber Attacks: How Directors and Officers and Cyber Policies Differ -
Article 7 mins
Why Now is the Right Time to Customize Cyber and E&O Contracts -
Article 6 mins
8 Steps Toward Building Better Resilience Against Rising Ransomware Attacks -
Article 7 mins
Mitigating Insider Threats: Managing Cyber Perils While Traveling Globally -
Article 4 mins
Managing Cyber Risk through Return on Security Investment -
Article 10 mins
Mitigating Insider Threats: Your Worst Cyber Threats Could be Coming from Inside -
Article 9 mins
Why HR Leaders Must Help Drive Cyber Security Agenda -
Article 10 mins
Escalating Cyber Security Risks Mean Businesses Need to Build Resilience
Employee Wellbeing
Our Employee Wellbeing collection gives you access to the latest insights from Aon's human capital team. You can also reach out to the team at any time for assistance with your employee wellbeing needs.
-
Article 8 mins
Employer Strategies for Cancer Prevention and Treatment -
Article 6 mins
The Long-Term Care Conundrum in the United States -
Article 9 mins
Developing a Paid Leave Strategy That Supports Workers and Their Families -
Article 9 mins
4 Ways to Foster a Thriving Workforce Amid Rising Health Costs -
Article 9 mins
The Next Evolution of Wellbeing is About Performance -
Article 6 mins
Three Ways Collective Retirement Plans Support HR Priorities -
Article 9 mins
How the Right Employee Wellbeing Strategy Impacts Microstress and Burnout at Work -
Podcast 13 mins
On Aon Podcast: The Future of Healthcare: Key Factors Impacting Medical Trend Rates -
Article 7 mins
Making Wellbeing Part of a Company’s DNA -
Article 7 mins
A Comprehensive Approach to Financial Wellbeing
Environmental, Social and Governance Insights
Explore Aon's latest environmental social and governance (ESG) insights.
-
Podcast 16 mins
On Aon Podcast: Approach to DE&I in the Workplace
Q4 2023 Global Insurance Market Insights
Our Global Insurance Market Insights highlight insurance market trends across pricing, capacity, underwriting, limits, deductibles and coverages.
-
Article 12 mins
Q4 2023: Global Insurance Market Overview -
Article 13 mins
Top Risk Trends to Watch in 2024
Regional Results
How do the top risks on business leaders’ minds differ by region and how can these risks be mitigated? Explore the regional results to learn more.
-
Article 12 mins
Top Risks Facing Organizations in Asia Pacific -
Article 12 mins
Top Risks Facing Organizations in North America -
Article 10 mins
Top Risks Facing Organizations in Europe -
Article 8 mins
Top Risks Facing Organizations in Latin America -
Article 8 mins
Top Risks Facing Organizations in the Middle East and Africa -
Article 9 mins
Top Risks Facing Organizations in the United Kingdom
Human Capital Analytics
Our Human Capital Analytics collection gives you access to the latest insights from Aon's human capital team. Contact us to learn how Aon’s analytics capabilities helps organizations make better workforce decisions.
-
Article 35 mins
5 Human Resources Trends to Watch in 2025 -
Article 13 mins
Medical Rate Trends and Mitigation Strategies Across the Globe -
Article 9 mins
3 Strategies to Help Avoid Workers Compensation Claims Litigation -
Podcast 15 mins
On Aon Podcast: Using Data and Analytics to Improve Health Outcomes -
Article 14 mins
How Technology Will Transform Employee Benefits in the Next Five Years -
Podcast 18 mins
On Aon Podcast: Technology Impacting the Future of Health and Benefits -
Article 8 mins
Integrating Workforce Data to Uncover Hidden Insights -
Podcast 24 mins
On Aon’s Better Being Series: Measuring Wellbeing -
Article 11 mins
Designing Tomorrow: Personalizing EVP, Benefits and Total Rewards
Human Capital Quarterly Insights Briefs
Read our collection of human capital articles that explore in depth hot topics for HR and risk professionals, including using data and analytics to measure total rewards programs, how HR and finance can better partner and the impact AI will have on the workforce.
-
Article 12 mins
Total Rewards Strategies That Drive Business Outcomes -
Article 35 mins
5 Human Resources Trends to Watch in 2025 -
Article 20 mins
5 Ways HR Can Partner with Finance to Drive Growth -
Article 15 mins
How Artificial Intelligence is Transforming Human Resources and the Workforce -
Article 17 mins
Five Big Human Resources Trends to Watch in 2024 -
Article 11 mins
Designing Tomorrow: Personalizing EVP, Benefits and Total Rewards -
Article 10 mins
How Data and Analytics Can Optimize HR Programs -
Article 11 mins
Get Ready for the Top 5 HR Trends in 2023
Insights for HR
Explore our hand-picked insights for human resources professionals.
-
Article 7 mins
COVID-19 has Permanently Changed the Way We Think About Wellbeing -
Article 7 mins
DE&I in Benefits Plans: A Global Perspective -
Article 10 mins
How Data and Analytics Can Optimize HR Programs -
Article 9 mins
Why HR Leaders Must Help Drive Cyber Security Agenda -
Article 7 mins
Case Study: The LPGA Unlocks Talent Potential with Data -
Article 11 mins
Navigating the New EU Directive on Pay Transparency -
Article 4 mins
How to Design Better Talent Assessment to Promote DE&I -
Article 6 mins
Training and Transforming Managers for the Future of Work -
Article 7 mins
Rethinking Your Total Rewards Programs During Mergers and Acquisitions -
Article 14 mins
Building a Resilient Workforce That Steers Organizational Success | An Outlook Across Industries
Workforce
Our Workforce Collection provides access to the latest insights from Aon’s Human Capital team on topics ranging from health and benefits, retirement and talent practices. You can reach out to our team at any time to learn how we can help address emerging workforce challenges.
-
Article 8 mins
Weather and Workforce: Employers Must Quantify the Risk -
Article 12 mins
Total Rewards Strategies That Drive Business Outcomes -
Article 19 mins
3 Strategies to Promote an Inclusive Environment and Bridge the Gender Gap -
Article 8 mins
2025 Salary Increase Planning Tips -
Article 8 mins
Employer Strategies for Cancer Prevention and Treatment -
Article 6 mins
Taking a Data-Led Approach to Job Architecture to Accelerate Pay Transparency -
Podcast 12 mins
Better Being Series: Building Sustainable Performance in a Multi-Generational Workforce -
Article 7 mins
Key Trends in U.S. Benefits for 2025 and Beyond -
Article 8 mins
Pay Transparency Can Lead to Better Equity Across Benefits -
Article 17 mins
3 Strategies to Improve Career Outcomes for Older Employees -
Article 9 mins
Developing a Paid Leave Strategy That Supports Workers and Their Families -
Article 9 mins
4 Ways to Foster a Thriving Workforce Amid Rising Health Costs
Mergers and Acquisitions
Our Mergers and Acquisitions (M&A) collection gives you access to the latest insights from Aon's thought leaders to help dealmakers make better decisions. Explore our latest insights and reach out to the team at any time for assistance with transaction challenges and opportunities.
-
Article 8 mins
Exit Strategy Value Creation Opportunities Exist as Economic Pressures Persist -
Article 5 mins
Future Trends for Financial Sponsors: Secondary Transactions -
Article 8 mins
3 Ways to Unlock M&A Value in a Challenging Credit Environment -
Article 7 mins
Rethinking Your Total Rewards Programs During Mergers and Acquisitions -
Article 9 mins
Organizational Design and Talent Planning are Key to M&A Success -
Article 7 mins
An Ever-Complex Global Tax Environment Requires Strong M&A Risk Solutions -
Article 5 mins
Project Management for HR: The Secret Behind a Successful M&A Deal -
Article 9 mins
Cultural Alignment Planning Drives M&A Success -
Report 1 mins
A Guide to Maximizing Value in Post-Merger Integrations -
Report 2 mins
The ABC's of Private Equity M&A: Deal Flow Impacts of Al, Big Tech and Climate Change -
Article 11 mins
The Silver Lining on M&A Deal Clouds: M&A Insurance Insights from 2023
Natural Resources and Energy Transition
The challenges in adopting renewable energy are changing with technological advancements, increasing market competition and numerous financial support mechanisms. Learn how your organization can benefit from our renewables solutions.
-
Article 4 mins
5 Steps for Successful Carbon Accounting Verification -
Article 6 mins
AI Innovations in Renewable Energy: Transforming the Sector -
Article 11 mins
Securing Human Capital in Natural Resources -
Article 6 mins
Decarbonizing Construction for a Low-Emission Future
Navigating Volatility
How do businesses navigate their way through new forms of volatility and make decisions that protect and grow their organizations?
Parametric Insurance
Our Parametric Insurance Collection provides ways your organization can benefit from this simple, straightforward and fast-paying risk transfer solution. Reach out to learn how we can help you make better decisions to manage your catastrophe exposures and near-term volatility.
-
Article 10 mins
How Public Entities and Businesses Can Use Parametric for Emergency Funding -
Article 6 mins
Parametric Insurance: A Complement to Traditional Property Coverage -
Article 8 mins
Using Parametric Insurance to Match Capital to Climate Risk -
Article 6 mins
Using Parametric Insurance to Close the Earthquake Protection Gap -
Article 5 mins
How Technology Enhancements are Boosting Parametric
Pay Transparency and Equity
Our Pay Transparency and Equity collection gives you access to the latest insights from Aon's human capital team on topics ranging from pay equity to diversity, equity and inclusion. Contact us to learn how we can help your organization address these issues.
-
Article 19 mins
3 Strategies to Promote an Inclusive Environment and Bridge the Gender Gap -
Report 1 mins
The 2024 North America Pay Transparency Readiness Study -
Article 10 mins
How Financial Institutions can Prepare for Pay Transparency Legislation -
Article 8 mins
Pay Transparency Can Lead to Better Equity Across Benefits -
Article 12 mins
Understanding and Preparing for the Rise in Pay Transparency -
Podcast 14 mins
On Aon Podcast: Understanding Pay Transparency Regulations -
Article 11 mins
Navigating the New EU Directive on Pay Transparency -
Article 7 mins
To Disclose Pay or Not? How Companies are Approaching the Pay Transparency Movement -
Podcast 19 mins
On Aon Podcast: Better Being Series Dives into Women’s Health -
Article 11 mins
Advancing Women’s Health and Equity Through Benefits and Support
Property Risk Management
Forecasters are predicting an extremely active 2024 Atlantic hurricane season. Take measures to build resilience to mitigate risk for hurricane-prone properties.
-
Article 8 mins
Florida Hurricanes Not Expected to Adversely Affect Property Market -
Article 10 mins
Build Resilience for an Extremely Active Atlantic Hurricane Season -
Article 4 mins
Four Steps to Develop Strong Property Risk Coverage in a Hardening Market -
Podcast 16 mins
On Aon Podcast: Navigating and Preparing for Catastrophes -
Article 6 mins
Parametric Insurance: A Complement to Traditional Property Coverage -
Article 4 mins
Navigating Climate Risk Using Multiple Models and Data Sets -
Article 5 mins
Rising Losses From Severe Convection Storms Mostly Explained by Exposure Growth -
Article 6 mins
Using Parametric Insurance to Close the Earthquake Protection Gap
Technology
Our Technology Collection provides access to the latest insights from Aon's thought leaders on navigating the evolving risks and opportunities of technology. Reach out to the team to learn how we can help you use technology to make better decisions for the future.
-
Article 9 mins
How AI and Workforce will Intersect: Navigating Risks and Opportunities -
Article 23 mins
The AI Data Center Boom: Strategies for Sustainable Growth and Risk Management -
Article 7 mins
How Technology is Transforming Open Enrollment in the U.S. -
Article 15 mins
Navigating Cyber Risks in EMEA: Key Insights for 2025 -
Article 7 mins
How to Navigate AI-Driven Cyber Risks -
Article 15 mins
How Artificial Intelligence is Transforming Human Resources and the Workforce -
Alert 3 mins
Better Decisions Brief: Perspectives on the CrowdStrike Outage -
Podcast 9 mins
On Aon Podcast: How has CrowdStrike Changed the Cyber Market? -
Article 12 mins
5 Ways Artificial Intelligence can Boost Claims Management -
Article 12 mins
Navigating AI-Related Risks: A Guide for Directors and Officers -
Article 5 mins
How Technology Enhancements are Boosting Parametric -
Article 9 mins
How to Futureproof Data and Analytics Capabilities for Reinsurers
Top 10 Global Risks
Trade, technology, weather and workforce stability are the central forces in today’s risk landscape.
-
Article 7 mins
Cyber Attack or Data Breach -
Article 4 mins
Business Interruption -
Article 4 mins
Economic Slowdown or Slow Recovery -
Article 5 mins
Failure to Attract or Retain Top Talent -
Article 5 mins
Regulatory or Legislative Changes -
Article 4 mins
Supply Chain or Distribution Failure -
Article 6 mins
Commodity Price Risk or Scarcity of Materials -
Article 4 mins
Damage to Brand or Reputation -
Article 5 mins
Failure to Innovate or Meet Customer Needs -
Article 4 mins
Increasing Competition -
Report 3 mins
Business Decision Maker Survey
Trade
Our Trade Collection gives you access to the latest insights from Aon's thought leaders on navigating the evolving risks and opportunities for international business. Reach out to our team to understand how to make better decisions around macro trends and why they matter to businesses.
-
Article 10 mins
Trade in a Technology-Driven Future -
Podcast 9 mins
Special Edition: Global Trade and its Impact on Supply Chain -
Article 8 mins
The Evolving Threat of Cargo Theft: 5 Key Mitigation Strategies -
Report 3 mins
Global Risk Management Survey -
Article 4 mins
Four Steps to Develop Strong Property Risk Coverage in a Hardening Market -
Article 14 mins
Cutting Supply Chains: How to Achieve More Reward with Less Risk -
Article 9 mins
Driving Private Equity Value Creation Through Credit Solutions -
Article 7 mins
4 Steps to Help Take Advantage of a Buyer-Friendly Directors' & Officers' Market -
Article 9 mins
Managing Reputational Risks in Global Supply Chains -
Article 8 mins
How an Outsourced Chief Investment Officer Can Help Improve Governance and Manage Complexity -
Article 8 mins
Decarbonizing Your Business: Finding the Right Insurance and Strategy -
Article 8 mins
Reputation Analytics as a Leading Indicator of ESG Risk
Transaction Solutions Global Claims Study
Better Decisions Across Interconnected Risk and People Issues.
-
Report 5 mins
Chapter 1: Author’s Note & Executive Summary -
Report 8 mins
Chapter 2: North America: Highlights, Claims Severity and Frequency -
Report 3 mins
Chapter 3: North America: Breach Type and Notification -
Report 24 mins
Chapter 4: North America: Industry Sectors and Trends -
Report 4 mins
Chapter 5: North America: Tax Insurance Claims -
Report 5 mins
Chapter 6: EMEA: Highlights and Introduction -
Report 8 mins
Chapter 7: EMEA: Claim Frequency and Metrics -
Report 7 mins
Chapter 8: EMEA: Notifications by Target Location and Claims Severity and Payment Trends -
Report 9 mins
Chapter 9: EMEA: Breach Types and Trends -
Report 7 mins
Chapter 10: EMEA: Case Law, Insurer Survey, Claims Handling and Tax -
Report 5 mins
Chapter 11: APAC: Asia -
Report 8 mins
Chapter 12: APAC: Pacific
Weather
With a changing climate, organizations in all sectors will need to protect their people and physical assets, reduce their carbon footprint, and invest in new solutions to thrive. Our Weather Collection provides you with critical insights to be prepared.
-
Article 9 mins
Steering Trade and Supply Chains Amid Weather Challenges -
Podcast 9 mins
On Aon Podcast: Climate Impact on the Property and Casualty Market -
Alert 14 mins
L.A. Wildfires Highlight Urgent Need for Employee Support and Business Resilience -
Report 2 mins
Climate and Catastrophe Insight -
Article 10 mins
How Public Entities and Businesses Can Use Parametric for Emergency Funding -
Podcast 12 mins
On Aon Podcast: Tackling Climate Risk to Build Economic Resilience -
Article 8 mins
Understanding Freeze Risk in a Changing Climate -
Podcast 9 mins
On Aon Podcast: Climate Science Through Academic Collaboration -
Article 6 mins
How Companies Are Using Climate Modeling to Improve Risk Decisions -
Article 8 mins
Using Parametric Insurance to Match Capital to Climate Risk -
Article 9 mins
How the Construction Industry is Navigating Climate Change -
Article 9 mins
Record Heatwaves: Protecting Employee Health and Safety
Workforce Resilience
Our Workforce Resilience collection gives you access to the latest insights from Aon's Human Capital team. You can reach out to the team at any time for questions about how we can assess gaps and help build a more resilience workforce.
-
Article 4 mins
Using Data to Close Workforce Gaps in Financial Institutions -
Article 5 mins
Using Data to Close Workforce Gaps in Retail Companies -
Article 7 mins
Using Data to Close Workforce Gaps in Technology Companies -
Article 4 mins
Using Data to Close Workforce Gaps in Manufacturing Companies -
Article 6 mins
Using Data to Close Workforce Gaps in Life Sciences Companies -
Report 4 mins
Measure Workforce Resilience for Better Business Outcomes -
Podcast 18 mins
On Aon Podcast: Methodology to Predict Employee Performance for the LPGA -
Article 6 mins
Training and Transforming Managers for the Future of Work -
Article 14 mins
Building a Resilient Workforce That Steers Organizational Success | An Outlook Across Industries
