Connected devices increasingly at risk of cyber attacks

Devices connected to an enterprise network are increasingly at risk of cyberattack, according to a study by tech security firm Ordr.

Its report uncovered new pandemic-related cybersecurity challenges, including the large-scale growth of connected devices and a subsequent increased risk of security vulnerabilities. It used findings from security risk and trend analysis of data for the 12 months to June 2021 across the company’s 500+ deployments in healthcare, life sciences, retail, and manufacturing.

The number of agentless and un-agentable devices increased to 42% in this year’s report, including medical and manufacturing devices that are critical to business operations along with network devices, IP phones, video surveillance cameras and facility devices (such as badge readers) that are not designed with security in mind, cannot be patched, and cannot support endpoint security agents.

Ordr also discovered that popular consumer devices are often connected to the enterprise network, including Pelotons, Sonos speakers, gaming machines, Alexas and Teslas. While the usage of unsanctioned shadow IoT devices was highlighted in the same report last year, the new figures suggest that there are two times more personal devices this year, increasing the threat landscape and delivering a wealth of data for threat actors to use to profile targets.

The report also identified that about 19% of deployments had devices running outdated operating systems Windows 7 and older, and almost 34% of deployments with devices running Windows 8 and Windows 10, which are expected to end-of-life in 2023 and 2025 respectively. Among the report’s most troubling findings was the discovery that 15% of medical devices and 32% of medical imaging devices run on outdated operating systems. This is because many medical devices remain in operation for a number of years and cannot be easily replaced for cost reasons.

Greg Murphy, CEO of Ordr, said: “We found an astonishing and worrisome number of vulnerabilities and risks in connected devices, which is a crucial reminder that organisations must have comprehensive visibility as well as security for everything connecting to their networks. As the number of connected devices climbs, the number and sophistication of attacks targeting them will grow.”

The report also found that 46% of all connected devices are vulnerable to medium and high severity attacks. Top attacks included external communications to malicious URLs such as Darkside and Conti ransomware sites, followed by attacks due to vulnerable operating systems.

    Share Story:


Cyber risk in the transportation industry
The connected nature of the transport and logistics industries makes them an attractive target for hackers, with potentially disruptive and costly consequences. Between June 2020 and June 2021, the transportation industry saw an 186% increase in weekly ransomware attacks. At the same time, regulations and cyber security standards are lacking – creating weak postures across the board. This podcast explores the key risks. Published April 2022.

Political risk: A fresh perspective
CIR’s editor, Deborah Ritchie speaks with head of PCS at Verisk, Tom Johansmeyer about the confluence of political, nat cat and pandemic risks in a world that is becoming an increasingly risky place in which to do business. Published February 2022.