Malware attacks on Internet of Things (IoT) and Operational Technology (OT) devices have seen a significant increase of 400% compared to the previous year, according to a report released on Wednesday. The report, conducted cloud security company Zscaler, analyzed approximately 300,000 blocked attacks on IoT devices over a six-month period. The findings highlight the relentless nature of cyber threat actors, who primarily target legacy vulnerabilities.
Global CISO and Head of Security Research at Zscaler, Deepen Desai, emphasized the threat posed weak enforcement of security standards for IoT device manufacturers and the proliferation of unmanaged and unpatched devices at the enterprise level. These vulnerabilities provide an entry point for attackers into the environment.
The researchers also revealed that cybercriminals are specifically targeting legacy vulnerabilities, with 34 out of the 39 most popular IoT exploits directed at vulnerabilities that have existed for over three years. The Mirai and Gafgyt malware families remain the primary sources of attack payloads, accounting for 66% of attacks. These malware families create botnets from infected IoT devices, which are then used to launch denial-of-service (DDoS) attacks against lucrative businesses.
In terms of sectors targeted, manufacturing and retail accounted for nearly 52% of IoT device traffic. Devices such as 3D printers, geolocation trackers, industrial control devices, automotive multimedia systems, data collection terminals, and payment terminals were found to be the main sources of signals over digital networks. Meanwhile, the education sector experienced a substantial increase in IoT malware attacks, with a staggering 961% jump.
The Zscaler report also identified the United States as a top target for IoT malware authors, with 96% of all IoT malware distributed from compromised devices originating in the country. Mexico, on the other hand, experienced the highest number of infections, with 46% of all IoT malware infections.
It is worth noting that the education sector is particularly vulnerable due to the wealth of personal data stored on their networks. Educational institutions have become attractive targets for cybercriminals, posing risks to both students and administrations.
In conclusion, this report sheds light on the alarming increase in malware attacks on IoT and OT devices, emphasizing the urgent need for improved security standards and proactive measures to mitigate these threats.