Report: More IoT Device Exposures Seen in Education Institutions

Education institutions have a 14x higher rate of Internet of Things device exposures compared to other industries, according to a recent report from RiskRecon and cybersecurity research firm Cyentia Institute. Researchers analyzed millions of internet-facing hosts controlled by more than 35,000 organizations to find out what types of IoT devices are prevalent in enterprise environments, and how exposed IoT devices can correlate with other security-related risks.

In the education sector, 6.6 percent of organizations had exposed IoT devices, compared to the base rate of 0.5 percent across industries. Taking all industries into account, the top three types of exposed IoT devices were: cameras, "management interfaces" (meaning a variety of devices using generic IoT development software) and printers. Of those exposed devices, the researchers found, 85.7 percent had "critical" security issues that could result in serious compromise.

Organizations with exposed IoT devices also had a 62 percent higher density of other security issues. The biggest increase was seen in network filtering and software patching issues, which both jumped at least 60 percent in correlation with exposed IoT devices vs. non-exposed IoT devices.

The full report is available on the RiskRecon site (registration required).

About the Author

Rhea Kelly is editor in chief for Campus Technology, THE Journal, and Spaces4Learning. She can be reached at [email protected].

Featured

  • interconnected cloud icons with glowing lines on a gradient blue backdrop

    Report: Cloud Certifications Bring Biggest Salary Payoff

    It pays to be conversant in cloud, according to a new study from Skillsoft The company's annual IT skills and salary survey report found that the top three certifications resulting in the highest payoffs salarywise are for skills in the cloud, specifically related to Amazon Web Services (AWS), Google Cloud, and Nutanix.

  • a hobbyist in casual clothes holds a hammer and a toolbox, building a DIY structure that symbolizes an AI model

    Ditch the DIY Approach to AI on Campus

    Institutions that do not adopt AI will quickly fall behind. The question is, how can colleges and universities do this systematically, securely, cost-effectively, and efficiently?

  • minimalist geometric grid pattern of blue, gray, and white squares and rectangles

    Windows Server 2025 Release Offers Cloud, Security, and AI Capabilities

    Microsoft has announced the general availability of Windows Server 2025. The release will enable organizations to deploy applications on-premises, in hybrid setups, or fully in the cloud, the company said.

  • digital brain made of blue circuitry on the left and a shield with a glowing lock on the right, set against a dark background with fading binary code

    AI Dominates Key Technologies and Practices in Cybersecurity and Privacy

    AI governance, AI-enabled workforce expansion, and AI-supported cybersecurity training are three of the six key technologies and practices anticipated to have a significant impact on the future of cybersecurity and privacy in higher education, according to the latest Cybersecurity and Privacy edition of the Educause Horizon Report.