It urges IoT device manufacturers to ‘take responsibility’ by implementing security-by-design
Internet of Things botnets could pose an “unmanageable” cyber-security risk, created by botnets in excess of 1 million units, says research firm Juniper.
Botnets are a group of computers connected by the Internet that have been infected with malicious software which allows them to be controlled remotely.
New data from the research company has found that the consumer Internet of Things (IoT) installed base will reach over 15 billion units by 2021, an increase of 120 per cent over 2016. As evidenced at the CES show earlier this month, embedded connectivity is increasingly being used as a product differentiator.
Juniper cautioned that the vast scale of this connectivity will, unless action is taken, lead to an unmanageable cybersecurity risk created by botnets in excess of 1 million units.
Juniper’s report, Internet of Things for Security Providers: Opportunities, Strategies & Market Leaders 2016-2021, found that recent IoT botnets will prove merely to be “the tip of the cybersecurity iceberg”. Botnets were uncovered as a key factor in the largest DDoS (distributed denial-of-service) attack ever recorded last year.
The report found that the use of botnets to disrupt Internet services form part of the near-term threat landscape. It predicted that botnets will be used for more malicious purposes in future, impacting consumer, industrial and public services markets.
“Attacks such as those on Dyn last October can be viewed as proof of concepts”, noted research author Steffen Sorrell. “In the medium-term, botnets will be used far more creatively – not only to disrupt services, but also to create a distraction enabling multi-pronged attacks aimed at data theft or physical asset disruption.”
The research called on IoT device manufacturers to ‘take responsibility’ by implementing security-by-design, adding that corporate-scale vendors such as Amazon, Google and Samsung should lead efforts to galvanise other vendors to apply security best-practices.
Additionally, the research found that the market is wide open for challenger cyber-security vendors. It highlighted providers such as Crossword and Positive Technologies who are using machine learning to disruptively protect against DDoS and malicious network activity. It predicted that the industry will be forced to move beyond traditional signature-based detection methods in the near-term in order to address IoT cybersecurity effectively.
If you like this, you might be interested in reading the following:
The boss of one of the UK’s leading data security firms welcomes faster connectivity but warns that it can also mean the ‘surface area’ for attacks is greater
According to a new research report from Juniper, the unit cost of hardware is expected to be close to the ‘magic’ $1 throughout the period
Chancellor Philip Hammond sets out a £1.9bn security strategy that aims to strike back at malicious hackers