Security News > 2023 > October > IoT security threats highlight the need for zero trust principles
ThreatLabz focused on understanding IoT device activity and attributes via device fingerprinting and analyzing the IoT malware threat landscape.
By adopting a zero trust architecture, organizations can gain visibility into IoT device traffic and minimize IoT security risks.
"Weak enforcement of security standards for IoT device manufacturers coupled with the proliferation of shadow IoT devices at the enterprise level poses a significant threat to global organizations. Often, threat actors target 'unmanaged and unpatched' devices to gain an initial foothold into the environment," said Deepen Desai, Global CISO and Head of Security Research, Zscaler.
"To address these challenges, I encourage organizations to enforce zero trust principles when securing IoT and OT devices - never trust, always verify, and assume breach. Organizations can eliminate lateral movement risk by utilizing continuous discovery and monitoring processes to segment these devices," added Desai.
With the steady adoption of IoT and personal connected devices, the report found an increase of over 400% in IoT malware attacks year-over-year.
This creates long-term challenges for security teams at manufacturing businesses but also demonstrates that industrial IoT holds a substantial lead in adopting unique IoT devices.
News URL
https://www.helpnetsecurity.com/2023/10/27/iot-malware-attacks/
Related news
- Obsidian Security Warns of Rising SaaS Threats to Enterprises (source)
- Zscaler Report: Mobile, IoT, and OT Cyber Threats Surge in 2024 (source)
- Eliminating AI Deepfake Threats: Is Your Identity Security AI-Proof? (source)
- Leveraging Wazuh for Zero Trust security (source)
- AWS security essentials for managing compliance, data protection, and threat detection (source)
- Privileged Accounts, Hidden Threats: Why Privileged Access Security Must Be a Top Priority (source)