https://www.iotworldtoday.com/wp-content/themes/ioti_child/assets/images/logo/mobile-logo.png
  • Home
  • News
    • Back
    • Roundups
  • Strategy
  • Special Reports
  • Business Resources
    • Back
    • Webinars
    • White Papers
    • Industry Perspectives
    • Featured Vendors
  • Other Content
    • Back
    • Q&As
    • Case Studies
    • Features
    • How-to
    • Opinion
    • Podcasts
    • Strategic Partners
    • Latest videos
  • More
    • Back
    • About Us
    • Contact
    • Advertise
    • Editorial Submissions
  • Events
    • Back
    • Embedded IoT World (Part of DesignCon) 2022
Iot World Today
  • NEWSLETTER
  • Home
  • News
    • Back
    • Roundups
  • Strategy
  • Special Reports
  • Business Resources
    • Back
    • Webinars
    • White Papers
    • Industry Perspectives
    • Featured Vendors
  • Other Content
    • Back
    • Q&As
    • Case Studies
    • Features
    • How-to
    • Opinion
    • Podcasts
    • Strategic Partners
    • Latest videos
  • More
    • Back
    • About Us
    • Contact
    • Advertise
    • Editorial Submissions
  • Events
    • Back
    • Embedded IoT World (Part of DesignCon) 2022
  • newsletter
  • IIoT
  • Cities
  • Energy
  • Homes/Buildings
  • Transportation/Logistics
  • Connected Health Care
  • Retail
  • AI
  • Metaverse
  • Development
  • Security
ioti.com

Security


Getty Images

Image shows a digital security concept

IoT Devices Most Vulnerable to Internal Security Threats

Insider cybersecurity threats are on the rise and Iot devices are at the greatest risk
  • Written by Adam Swift
  • 22nd February 2022

A new study has found internal employees are the biggest security threat to a company, with IoT devices being the most vulnerable. 

Cybersecurity threats from the inside, whether it’s from contractors or employees, continue to be a growing worldwide concern, with vulnerable IoT devices at the greatest risk for data losses.

Those insider threats have increased in both frequency and cost over the past two years, according to the Ponemon Institute’s Proofpoint’s 2022 Cost of Insider Threats Global Report.

The 2022 report includes survey responses from more than 1,000 IT professionals worldwide who experienced a recent cybersecurity incident due to an insider threat. 

Of those surveyed, 63% said they are worried about unmanaged IoT devices resulting in the loss of sensitive data, by the cloud (52% of respondents) and the network (51%).

The findings show threats rose 44% over the past two years, with costs per incident up more than a third to $15.38 million.

In large part, that increase in cost is a result of the increase in time leading organizations spend to contain insider incidents, from 77 days to 85 days. Incidents that took more than 90 days to contain cost organizations an average of $17.19 million on an annualized basis.

Negligence was determined to be the root cause of most insider incidents. A total of 3,807 attacks, or 56%, were caused by employee or contractor negligence, costing on average $484,931 per incident.

Malicious insiders caused only 26%, or 1,749 incidents, but at a higher cost per incident of $648,062. With more employees gaining greater access to work from outside the office, malicious insiders are harder to detect than external attackers or hackers, according to the report.

Ryan Kalember, executive vice president of cybersecurity strategy at Proofpoint, said the months of remote and hybrid working environments brought on by the pandemic attributed to these increased insider threats. 

“Months of sustained remote and hybrid working leading up to ‘The Great Resignation’ has resulted in an increased risk around insider threat incidents, as people leave organizations and take data with them,” said  Kalember. “In addition, organizational insiders, including employees, contractors and third-party vendors, are an attractive attack vector for cybercriminals due to their far-reaching access to critical systems, data and infrastructure.”

To minimize risk companies can make sure employees fully understand the laws and regulatory requirements related to their work and understand the steps to keep their devices secure at all times. 

Ponemon Institute founder and chairman Dr. Larry Poneman said insider threats continue to climb both in frequency and remediation costs. 

“That said, we are seeing the risk of malicious insider threats increase – with more users accessing business data from outside the confines of the office,” Poneman said. “This can blur the security team’s ability to identify and differentiate between well-meaning employees, and malicious insiders trying to siphon sensitive business data.”

Tags: Proofpoint Ryan Kalember insider threats Security News

Related


  • Company Sets New Standards for IoT Device Security
    Xiaomi aims to promote a global standard for preventing IoT data security and privacy risks for consumers
  • Image shows an abstract digital big data concept.
    BotenaGo Malware Targets Millions of IoT Devices
    AT&T Alien Labs identified the malware that has left millions of IoT devices exposed.
  • Palo Alto Networks Working With Department of Veterans Affairs to Secure Remote Workforce
    The company’s integrated cybersecurity expertise will also help deliver secure services to U.S. veterans
  • Digital background depicting innovative technologies in security systems, data protection Internet technologies
    DigiCert Acquires Mocana to Expand IoT Cybersecurity Presence
    Mocana’s IoT security stack is said to be particularly prevalent with industrial and manufacturing clients

Leave a comment Cancel reply

-or-

Log in with your IoT World Today account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Related Content

  • San Francisco 49ers Reportedly Hit by Ransomware Attack
  • BotenaGo Source Code Leak Exposes More IoT Devices
  • Palo Alto Networks Working With Department of Veterans Affairs to Secure Remote Workforce
  • Company Sets New Standards for IoT Device Security

Roundups

View all

IoT Product Roundup: PTC, Nokia, Arm and More

19th May 2022

IoT Deals, Partnerships Roundup: Intel, Nauto, Helium and more

14th May 2022

IoT Product Roundup: Amazon, Synaptics, Urban Control and More

27th April 2022

White Papers

View all

The Role of Manufacturing Technology in Continuous Improvement Ebook

6th April 2022

IIoT Platform Trends for Manufacturing in 2022

6th April 2022

Latest Videos

View all
Dylan Kennedy of EMQ

Embedded IoT World 2022: Dylan Kennedy of EMQ

Dylan Kennedy, EMQ’s VP of global operations, sat down with Chuck Martin at Embedded IoT World 2022.

Embedded IoT World 2022: Omdia’s Sang Oh Talks Vehicle Chip Shortage

Omdia’s automotive semiconductor analyst sits down with Chuck Martin at this year’s event

E-books

View all

How Remote Access Helps Enterprises Improve IT Service and Employee Satisfaction

12th January 2022

An Integrated Approach to IoT Security

6th November 2020

Webinars

View all

Rethinking the Database in the IoT Era

18th May 2022

Jumpstarting Industrial IoT solutions with an edge data management platform

12th May 2022

AI led Digital Transformation of Manufacturing: Time is NOW

9th December 2021

Special Reports

View all

Omdia’s Smart Home Market Dynamics Report

7th January 2022

Cybersecurity Protection Increasingly Depends on Machine Learning

28th October 2020

IoT Security Best Practices for Industry and Enterprise

20th October 2020

Twitter

IoTWorldToday, IoTWorldSeries

3D Home Printer to Build 72 Residences for National Homebuilder dlvr.it/SQhWSF https://t.co/XJOs70DqzH

19th May 2022
IoTWorldToday, IoTWorldSeries

Microsoft Ramping up Cybersecurity Service Offerings dlvr.it/SQhPR0 https://t.co/nYzaDRnyVY

19th May 2022
IoTWorldToday, IoTWorldSeries

IoT Product Roundup: PTC, Nokia, Arm and More dlvr.it/SQhNNF https://t.co/ZApdw3RHdu

19th May 2022
IoTWorldToday, IoTWorldSeries

Britain’s postal service has plans to run a fleet of autonomous #drones to make rural postal deliveries easier.… twitter.com/i/web/status/1…

19th May 2022
IoTWorldToday, IoTWorldSeries

Britain’s postal service has plans to run a fleet of autonomous #drones to make rural postal deliveries easier.… twitter.com/i/web/status/1…

19th May 2022
IoTWorldToday, IoTWorldSeries

Tesla Plans ‘Many Cool Updates’ at Annual Event dlvr.it/SQhLLP https://t.co/kgSTGBrYrG

19th May 2022
IoTWorldToday, IoTWorldSeries

@JohnDeere’s acquisition of #AI startup Light continues to advance its roadmap toward @autonomous farming.iotworldtoday.com/2022/05/19/joh…

19th May 2022
IoTWorldToday, IoTWorldSeries

📣JUNE DIGITAL SYMPOSIUM Drive your strategy forward and stay on the #Healthcare and #IndustrialIoT pulse with key… twitter.com/i/web/status/1…

19th May 2022

Newsletter

Sign up for IoT World Today newsletters: vertical industry coverage on Tuesdays and horizontal tech coverage on Thursdays.

Special Reports

Our Special Reports take an in-depth look at key topics within the IoT space. Download our latest reports.

Business Resources

Find the latest white papers and other resources from selected vendors.

Media Kit and Advertising

Want to reach our audience? Access our media kit.

DISCOVER MORE FROM INFORMA TECH

  • IoT World Series
  • Channel Futures
  • RISC-V
  • Dark Reading
  • ITPro Today
  • Web Hosting Talk

WORKING WITH US

  • Contact
  • About Us
  • Advertise
  • Login/Register

FOLLOW IoT World Today ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookies Policy
  • Terms
Copyright © 2022 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X