In-brief: attendees at the recent Black Hat Briefings are concerned about the risks posed by IoT devices, but lack confidence that their employer is properly tracking IoT devices, a survey from Tripwire reveals.
The security firm Tripwire used the recent Black Hat Briefings in Las Vegas to conduct a survey of information security professionals on their attitudes toward the Internet of Things. The finds are somewhat surprising. More than 60% said their organization was “not prepared” for the security risks associated with the Internet of Things (though half of that number said they would be “soon”). More than 50% said their organization doesn’t track the number of IoT devices properly. Finally, more than 7 in 10 professionals surveyed said the prospect of IoT devices being “weaponized” (say in a DDoS attack) frightened them.
From the article:
The internet of things presents a clear weak spot for an increasing number of information security organizations. As an industry, we need to address the security basics with the growing number of IoT devices in corporate networks. By ensuring these devices are securely configured, patched for vulnerabilities and being monitored consistently, we will go a long way in limiting the risks introduced.