Inadequate security sees surge in IoT data breaches, study shows

Internet of Things

Research finds that the number of data breaches linked to Internet of Things (IoT) devices has increased considerably over the last two years. 

A study published by Ponemon shows that the number of breaches due to unsecured connected devices now accounts for 26% of security incidents, up from the previous figure of 15%.

However, actual numbers of breaches may be far greater as organisations are often not fully aware of how many web-connected devices their employees and teams are using.

Lack of clarity over application or third-party platform usage could be pushing the number of cyber-security incidents on connected devices even higher, according to the Ponemon’s report titled: “Third Annual Party IoT Risk: Companies Don’t Know What They Don’t Know”.

The study also discovered that budgets aren’t up to managing third-party risks coming through IoT gadgets.

Looking forward, 87% of the survey’s respondents said they thought their own companies are likely to suffer a cyber-attack due to poorly secured IoT devices or applications over the next two years.

The Ponemon report also highlighted a concerning accountability gap, as less than half of the companies’ board members said they gave the green light to projects designed to lower third-party risk. Just 21% of board members said they were “highly involved” in security practices and in understanding third-party and cyber dangers in a more general capacity.


Registration now OPEN for PrivSec Global
Taking place across four days from 30 Nov to 3 Dec, PrivSec Global, will be the largest data protection, privacy and security event of 2020.

Reserve your place today and gain access to the entire event free of charge. With all sessions available to view live or on-demand, you can build a personalised agenda based on your key focus topics and make the event fit around your work schedule.

We have been awarded the number 1 GDPR Blog in 2019 by Feedspot.