Report: More IoT Device Exposures Seen in Education Institutions -- Campus Technology

Breaking News

Report: More IoT Device Exposures Seen in Education Institutions

By Rhea Kelly
01/26/21

Education institutions have a 14x higher rate of Internet of Things device exposures compared to other industries, according to a recent report from RiskRecon and cybersecurity research firm Cyentia Institute. Researchers analyzed millions of internet-facing hosts controlled by more than 35,000 organizations to find out what types of IoT devices are prevalent in enterprise environments, and how exposed IoT devices can correlate with other security-related risks.

In the education sector, 6.6 percent of organizations had exposed IoT devices, compared to the base rate of 0.5 percent across industries. Taking all industries into account, the top three types of exposed IoT devices were: cameras, "management interfaces" (meaning a variety of devices using generic IoT development software) and printers. Of those exposed devices, the researchers found, 85.7 percent had "critical" security issues that could result in serious compromise.

Organizations with exposed IoT devices also had a 62 percent higher density of other security issues. The biggest increase was seen in network filtering and software patching issues, which both jumped at least 60 percent in correlation with exposed IoT devices vs. non-exposed IoT devices.

The full report is available on the RiskRecon site (registration required).

About the Author

Rhea Kelly is editor in chief for Campus Technology, THE Journal, and Spaces4Learning. She can be reached at [email protected].

E-Mail this page

Printable Format

Featured

Researchers Develop AI-Powered Method for Business Process Redesign

Researchers have developed a novel AI-powered approach that enables non-technical users to modify complex process models through simple conversations with chatbots.
OpenAI Report Identifies Malicious Use of AI in Cloud-Based Cyber Threats

A report from OpenAI identifies the misuse of artificial intelligence in cybercrime, social engineering, and influence operations, particularly those targeting or operating through cloud infrastructure. In "Disrupting Malicious Uses of AI: June 2025," the company outlines how threat actors are weaponizing large language models for malicious ends — and how OpenAI is pushing back.
IBM Introduces Agentic AI Governance and Security Platform

IBM has launched a new software stack for enterprise IT teams tasked with managing the complex governance and security challenges posed by autonomous AI systems.
Linux Foundation to Host Protocol for AI Agent Interoperability

The Linux Foundation has announced it will host the Agent2Agent (A2A) protocol project, an open standard originally developed by Google to support secure communication and interoperability among AI agents.