So, who exactly is involved in the IoT hunt? Here are some key findings of this report:
- Networks in China (primarily state-owned telecom companies and ISPs) headlined the threat actor list, accounting for 44% of all attacks in Q3 and 21% in Q4.
- Trailing behind China, the top threat actors in Q3 were Vietnam and the US, and Russia and the UK in Q4. (The UK surprisingly jumped to third place in Q4 with most activity coming from an online gaming network.)
- Russia, Spain, the US, and Turkey were the top 4 targeted countries (in that order) in Q3 and Q4.
- Russia, at 31% in Q3 and 40% in Q4, was the number one target of all top 50 source countries.
What can concerned enterprises do to deal with the IoT threat?
- Have a DDoS strategy that can support attack sizes beyond your network capacity.
- Ensure all of your critical services have redundancy, even those you outsource.
- Put pressure on IoT manufacturers to secure their products, and don’t buy products that are known to be insecure or compromised.
- Share your knowledge—about vulnerable devices, attacks and threat actors, successful mitigation efforts, and potential solutions—with other security professionals.
To see the full version of this report, click “Download” below.
