You are here
Home > Be Aware > ‘Shadow IoT’ Undermining Network Security

‘Shadow IoT’ Undermining Network Security

I believe we need a carrot AND stick approach to this:

  1. Setup a guest wifi network which both staff and guests can gain access to relatively easily;
  2. Stop any traffic between devices on that network (your device gets to connect outbound to the internet, that’s it);
  3. Ban any unauthorised devices from connecting to your corporate network and establish security controls (NAC, 802.1x…) to enforce the ban. Make it a disciplinary matter to bypass your controls.

That should do the trick…:

[…] “Employees are exposing enterprises to a large swath of threats by using personal devices, accessing home devices and monitoring personal entities through corporate networks,” said Deepen Desai, Zscaler’s vice president of security research. “We need to implement security strategies that safeguard enterprise networks by removing shadow IoT devices from the attack surface while continuously improving detection and prevention of attacks that target these devices.”

[…]

Original article here

Peter Glock
Over 30 years of designing, building and managing telecoms and IT services. Primarily working with large enterprise and professional services businesses in Asia, North America, continental Europe and the UK. Information security professional, secret physics nerd.
https://brownglock.com

Similar Articles

Leave a Reply

Top
%d bloggers like this: