A growing number of “non-commercial” Internet of Things devices are appearing in corporate networks, warned Palo Alto Networks, saying smart bulbs and Internet-connected pet feeders may not feature in models of threat to organizations.
According to Greg Day, VP and CSO EMEA of the American enterprise networking company: “When you consider that the security controls in consumer IoT devices are minimal, so as not to increase the price, the lack of visibility associated with the increase in remote work could lead to serious cybersecurity incidents.
The company surveyed 1,900 IT decision makers in 18 countries, including the UK, US, Germany, Netherlands and Australia. networks.
Smart bulbs, heart rate monitors, gym equipment, coffee machines and even smart pet feeders have all been found on corporate networks in 2021, Palo Alto Networks said. These devices are notoriously insecure – but in the COVID-19 work-from-home era, these devices being adjacent to corporate networks present a problem for Blue Teams.
“Remote workers should be aware that IoT devices can be compromised and used to move sideways to access their work devices if they both use the same home router, which in turn could allow attackers to move to corporate systems, ”said Palo Alto. .
The poor security of IoT devices mainly stems from the desire of manufacturers to keep prices low, eliminating the security of unnecessary overhead.
This approach inadvertently exposed a large number of easily identifiable devices to the Internet at large, causing such a headache that governments around the world are now preparing to impose better IoT security standards.
Even IoT business groups have realized the threat, although perhaps the regulatory threat rather than the security threat, but if it’s the right thing, the result isn’t a bad thing. .
Half of those polled said they were worried about attacks on their industrial IoT devices, with 46% also worried that connected cameras could be compromised. Smart cameras are a proven compromise method for thieves – and some vendors are better able to secure their equipment than others, as past incidents have shown.
More than a third (37%) of those polled in Palo Alto’s latest poll said they were concerned that connected home devices could be hacked. Perhaps in light of today’s findings, that number could increase a bit. ®