Study argues InfoSec workers not able to deal with IoT enterprise security concerns
Good news and bad news: information security professionals are becoming more aware of the risks presented by the proliferation of endpoints through the Internet of Things (IoT), but they are struggling to prepare to address the growing threat.
That is the verdict from a new piece of research from Pwnie Express. In a report entitled ‘The Internet of Evil Things’, which polled more than 400 global IT security professionals, the researchers argued Coolpad devices were the more frequently vulnerable mobile hotspot, while HP printers were considered a particularly dangerous backdoor.
Pwnie Express CEO Paul Paget said: “As the IoT universe continues to grow, the corresponding attack surface for malicious actors is growing, giving them an easy and unsecured way into your organisation's most sensitive information - and this has understandably put information security professionals on edge. Yet, despite ever-growing concerns around the proliferation of connected devices on and around their networks, more than one-third of organisations admit to having no BYOD policy in place at all and only 24% actually have a budget in place for BYOD security technology.
“This tells us that security professionals desperately need help educating the corner office and those in charge of the purse strings about the new evils and dangers their organisations face in our ever-evolving IoT world,” he added.
Most security professionals are not prepared to track or ascertain less-common RF and off-network IoT devices, the researchers argue. Eighty-nine percent do not possess visibility on Bluetooth devices and 87% cannot track 4G/LTE devices in real time. 71% cannot track off-network Wi-Fi devices in real time while 56% cannot track on-network IoT devices in real time.
Interested in hearing industry leaders discuss subjects like this and sharing their IoT use-cases? Attend the IoT Tech Expo World Series events with upcoming shows in Silicon Valley, London and Amsterdam to learn more.
- » Jeff Bezos wants Congress to let Amazon draft facial recognition laws
- » Why multi-site facilities cannot miss out on untapped IoT data
- » How big data and IoT initiatives render the ‘garbage in, garbage out’ theory invalid
- » IOTAS secures $8.5 million in series A funding to further enterprise ‘IoT as a service’ mission
- » IoT device manufacturers missed more than 100 vulnerabilities, argues new security research