UK-based engineering powerhouse IMI has confirmed that it recently fell victim to a cybersecurity breach
according to a short notice filed with the London Stock Exchange (LSE) on Thursday.
In its statement, IMI acknowledged unauthorized access to its systems and assured stakeholders that it is actively responding to the attack. However, the company has not disclosed specific details regarding the nature of the cyber incident whether it involved ransomware, data theft, or operational disruption.
To contain and investigate the breach, IMI has engaged external cybersecurity experts and is taking necessary steps to comply with regulatory obligations. The firm has also promised to provide further updates "as and when appropriate."
IMI Cyberattack Follows Similar Incident at Smiths Group
The IMI attack comes just one week after Smiths Group, another major British engineering company, also reported a cybersecurity breach impacting certain systems.
Smiths Group confirmed it had rapidly isolated the affected systems and activated its business continuity plans. Like IMI, Smiths has not disclosed whether ransomware was involved or whether hackers attempted to extort the company.
So far, no known ransomware groups have claimed responsibility for either attack.
Industry Concerns Over Targeted Cyberattacks
The engineering and manufacturing sectors are increasingly becoming prime targets for cybercriminals and nation-state actors. Companies like IMI and Smiths Group handle sensitive industrial data, intellectual property, and critical infrastructure—all of which are valuable assets for cyber attackers.
Recent trends show that sophisticated cybercriminal groups and state-sponsored hackers are shifting their focus toward engineering firms, supply chains, and industrial operations. These attacks can lead to data breaches, production halts, financial losses, and reputational damage.
While IMI has not provided details on the extent of the impact, the company’s swift response including engaging cybersecurity specialists—suggests an ongoing containment and recovery process.
Security analysts and industry leaders will be closely watching for further developments, especially to determine whether:
- The attack involved ransomware or other disruptive tactics.
- Any sensitive IMI data was stolen or leaked.
- Links exist between the IMI and Smiths Group attacks, potentially indicating a broader campaign against the UK’s engineering sector.
As the situation unfolds, businesses in critical industries are reminded to strengthen their cybersecurity defenses, implement advanced threat detection measures, and ensure business continuity plans are in place to mitigate the risks of evolving cyber threats.
