Billions of Internet of Things (IoT) devices are being compromised each year as malicious actors exploit a variety of security gaps to organize botnets, steal data and mine cryptocurrency. While the IoT now represents the single largest attack surface for most organizations, few have taken steps to adequately secure their IoT environment.
Kaspersky researchers say analysis of telemetry data identified more than 1.5 billion IoT attacks in the first six months of 2021, more than double the number for the previous six-month period. With billions of new devices being deployed globally each year, the problem is only getting worse.
According to Forrester Consulting, 69 percent of enterprises now have more IoT devices on their networks than computers, 69 percent say at least half of those devices are completely unmanaged and 67 percent say they have experienced an IoT security incident. Meanwhile, 93 percent admit that their investment in IoT security solutions is insufficient and needs to increase.
Why the IoT is Vulnerable
There’s no single explanation for IoT vulnerabilities. Because it is a highly distributed architecture comprising devices, sensors, processors, hardware interfaces, wireless gateways and edge servers, there are a variety of possible attack vectors. Additionally, different devices have different hardware, software and operating systems that support different security protocols.
In many cases, manufacturers have sacrificed security in favor of ease of use. For example, manufacturers often hardcode their devices with a single default password that can’t be easily changed or updated. While that can streamline deployment, it also creates enormous risk of credential theft. Additionally, manufacturers often eliminate encryption and other protections to reduce power consumption in small-form-factor devices.
Most IoT devices use Wi-Fi to remotely transfer data, but unsecured network connections can expose sensitive data. For example, the Krack attacks of a few years ago targeted the encryption of the Wi-Fi signal itself, which exposed any data being sent without additional protection layers like Transport Layer Security.
Mitigating the Threats
Part of the challenge is that most organizations simply don’t have the IT manpower to adequately monitor their growing IoT ecosystem. According to a Cisco study, the vast majority of organizations don’t know how many IoT devices are on their corporate networks, largely because devices are being deployed by multiple departments, business units and teams.
Here are some steps you can take to create a layered security environment that minimizes risk and delivers more control over the data IoT devices collect, store and share:
- Change the default password on all devices and disable any features you don’t use or need.
- Develop policies for updating device firmware and IoT applications to protect against emerging security vulnerabilities.
- Consider placing IoT devices on a segmented network with well-defined access control policies to prevent threats from moving laterally through your entire corporate network.
- Secure the wireless network with WatchGuard Wi-Fi 6 access points featuring WPA3 encryption, which can prevent many brute-force attacks.
- Use a next-generation firewall such as a WatchGuard Firebox appliance to ensure that IoT devices are only connecting to safe locations, reducing the chances of devices being remotely exploited.
- Consider a move to the WatchGuard Cloud, which offers automated security services and enables deep visibility into device health and performance.
Finally, consider working with a managed services provider that can monitor and manage your IoT environment. Verteks can help you gain control of your IoT environment through increased visibility, enhanced Wi-Fi security and comprehensive network management. Contact us to learn more about improving the security of your IoT assets.
