Research from ForeScout suggests organisations don’t have the security processes in place to cope with the expected increase in IIoT devices.
According to a survey of 500 IT management professionals by ForeScout, 2.7 million businesses in the UK are leaving their corporate networks vulnerable to IoT hacks.
The survey found significant cause for concern with almost half (47 per cent) of respondents having allowed IoT devices onto their corporate network without changing the default password. With 5.7 million registered businesses in the UK, extrapolating the data suggests that nearly 2.7m are still leaving obvious vulnerabilities in the system for bad actors to exploit. The risk to businesses has been compounded further by 15 per cent admitting they had not kept security patches up to date on all their connected enterprise devices.
Poor Device Visibility
The new study conducted by CensusWide and released to coincide with the launch of ForeScout’s new technology innovation, also highlighted that UK businesses have a blindspot when it comes to the number of devices connected to their network. Only 54 per cent of respondents had total confidence they have full visibility and can identify every device on their network.
Innovations in ForeScout’s CounterACT 8 product improve device visibility and control to mitigate risk, reduce the attack surface and automate incident response across the extended enterprise network – from the campus to data centre, cloud and critical infrastructure. The enhanced ForeScout device visibility platform adds increased scalability, cloud-based device intelligence, IoT device assessment and flexible centralised licensing to help enterprises see and control more than 5 billion IP-connected devices, including traditional, mobile, virtual, IoT and Operational Technology (OT).
Convergence of IT and OT
The visibility challenge for business is only set to increase, with analysts predicting the number of devices on enterprise networks is set to increase from 6.6 billion today to 29 billion in 2020. The research from ForeScout supports this trend with 40 per cent of respondents stating they are planning to increase their operational technology spend on connected devices. However, 7 in 10 (72%) IT Managers are concerned about the security implications of adding additional OT devices to their company’s network.
“The convergence between IT and OT is where businesses are looking to drive some major efficiency gains in 2018, but it makes the challenge of knowing exactly what devices are on your network that much harder,” explained Myles Bray, VP EMEA, ForeScout. “IoT has expanded the attack surface considerably for all firms, and without basic security hygiene it is easy for bad actors to gain a foothold and then move laterally on a network to reach high-value assets and cause business disruption.”