IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

IoT devices are more vulnerable than ever

Ove a billion attacks recorded on IoT devices in the first six months of the year

Over 1.5 billion attacks against Internet of Things (IoT) devices were detected by security researchers in the first half of the year, according to new research from Kaspersky.

Based on an analysis of telemetry data from the company’s honeypots, cyber attacks against IoT devices have increased by over 100%. In the first half of 2021, the number of total infection attempts reached 1,515,714,259. During the final six months of 2020, there were only 639,155,942.

Most of the attacks used the telnet protocol to access IoT devices. Researchers recorded over 872 million — 58% of the total — using this protocol. The rest used SSH (34%) and web (8%) channels. Hackers can use these compromised devices in a botnet to mine for cryptocurrency, launch DDoS attacks, or steal confidential data.

Kaspersky Security Expert Dan Demeter says since IoT devices, from smartwatches to smart home accessories, have become essential parts of our everyday lives, cyber criminals have skillfully switched their attention to this area.

“We see that once users’ interest in smart devices rose, attacks also intensified,” he said. “Some people believe they aren’t important enough to be hacked but we’ve observed how attacks against smart devices intensified during the past year. Most of these attacks are preventable, that’s why we advise smart home users to install a reliable security solution, which will help them stay safe.” 

Kaspersky recommended updating device firmware and changing any default passwords to something stronger or different. Any devices behaving oddly should also be rebooted to eliminate malware.

Sachin Shah, CTO of Operational Technology and ICS at Armis, told IT Pro that IoT exploitation is on the rise.

Related Resource

The state of ransomware in retail 2021

Insights into the current state of ransomware in the retail sector

Whitepaper front coverFree download

“Protecting such a colossal attack surface is no easy task, especially when there are so many varying types and security standards on the devices,” he said. “The prevailing concern from a security operations perspective regarding those billions of IoT devices, is that anything connected can be hacked. Each IoT device represents an attack surface that presents attackers with an avenue into your data.”

“And unlike laptops and smartphones, most IoT small factor devices hold less processing and storage capabilities. This makes it difficult to employ anti-virus, firewalls, and other security applications that could help protect them. At the same time, edge computing intelligently aggregates local data, making it a concentrated target for sophisticated threat actors. Ransomware can also target applications and data in addition to IoT device hardware,” he added.

Featured Resources

IT best practices for accelerating the journey to carbon neutrality

Considerations and pragmatic solutions for IT executives driving sustainable IT

Free Download

The Total Economic Impact™ of IBM Spectrum Virtualize

Cost savings and business benefits enabled by storage built with IBMSpectrum Virtualize

Free download

Using application migration and modernisation to supercharge business agility and resiliency

Modernisation can propel your digital transformation to the next generation

Free Download

The strategic CFO

Why finance transformation propels business value

Free Download

Recommended

SOC modernisation and and the role of XDR
Whitepaper

SOC modernisation and and the role of XDR

16 Mar 2023
Three innovative technologies to address UPS challenges at the edge
Whitepaper

Three innovative technologies to address UPS challenges at the edge

7 Feb 2023
GTA V vulnerability exposes PC users to partial remote code execution attacks
vulnerability

GTA V vulnerability exposes PC users to partial remote code execution attacks

23 Jan 2023
MSI to release securer BIOS settings after critical flaw discovered
vulnerability

MSI to release securer BIOS settings after critical flaw discovered

20 Jan 2023

Most Popular

The big PSTN switch off: What’s happening between now and 2025?
Sponsored

The big PSTN switch off: What’s happening between now and 2025?

13 Mar 2023
HMRC lost nearly 50% more devices in 2022
Hardware

HMRC lost nearly 50% more devices in 2022

17 Mar 2023
Why – and how – IP can be the hero in your digital transformation success story
Sponsored

Why – and how – IP can be the hero in your digital transformation success story

6 Mar 2023