Cyber Incident Victim: IMI

IMI, a British engineering company specializing in industrial automation and climate control products, reported unauthorized cyber activity affecting its systems to the London Stock Exchange on February 1, 2025. The company detected the incident as of January 31, 2025, and promptly engaged external cybersecurity experts to investigate and contain the breach. IMI’s public disclosure did not specify the nature of the unauthorized access, the scope of affected systems, or whether data was compromised. This incident marked the second cybersecurity event disclosed by a major U.K. engineering firm within nine days, following Smiths Group’s January 28 notification of unsanctioned network activity, which led to rapid system isolation and business continuity plan activation. IMI, headquartered in Birmingham with a market capitalization of $6.24 billion, declined to provide further details when contacted by media.

The incident occurred against a backdrop of heightened cyber threats to European industrial sectors. Industrial cybersecurity firm Dragos reported 119 ransomware incidents targeting European organizations in Q3 2024, with the U.K., Germany, and Italy being the most affected nations. Manufacturing globally experienced 394 cyberattacks during July-September 2024, including 56 incidents impacting industrial control systems. A notable parallel occurred in August 2024 when German manufacturer Arntz Optibelt Group sustained a ransomware attack that severely disrupted its business operations. While IMI’s containment measures mirrored industry-standard responses like expert engagement and incident reporting, the company did not disclose operational impacts, data compromise evidence, or potential connections to broader threat campaigns affecting the engineering sector.