Mobile, IoT, and OT Threats: 5 Key Takeaways for Healthcare, Government, and Education

5 key takeaways

To shed light on this burgeoning threat landscape, the Zscaler ThreatLabz research team conducted a detailed analysis of mobile and IoT/OT attack trends from June 2023 to May 2024. The following five takeaways are particularly important for healthcare, education, and government organizationsas mobile devices, IoT, and OT grow more integral to their critical functions. For complete analysis, insights, and security guidance, download the Zscaler ThreatLabz 2024 Mobile, IoT, and OT Threat Report.

1. Mobile threats are increasingly targeting the education sector

The education sector has emerged as the second-most targeted industry for mobile threats, accounting for 18.5% of all mobile malware attacksblocked by the Zscaler cloud-a significant 136% year-over-year risein attacks (blocked mobile transactions) in a year that saw overall mobile attacks decline. As schools grow reliant on mobile and IoT devices for everything from communication to administrative tasks, their attack surface expands. The widespread adoption of bring your own device (BYOD) policies further exacerbates security challenges by introducing unmanaged devices into school networks, each serving as a potential entry point for attackers. With large amounts of personal data from a diverse user base, open networks, and a lack of security measures for non-employee and shadow devices, it's clear why educational institutions have become particularly attractive and vulnerable targets for attackers.

2. IoT threats are adding to security challenges in the public sector

IoT devices are playing an increasingly vital role in government operations, but their growing prevalence also introduces new security challenges. The government sector ranks ninth in the number of unique IoT devices identified in the Zscaler cloud, reflecting the scale and diversity of connected devices within public systems. Accordingly, ThreatLabz found that the overall volume of IoT malware attacks has increased by 45% over the past year. The more IoT devices embedded in government infrastructure, the greater the risk of security breaches, making it critical for the public sector to prioritize IoT/OT security measures.

3. Increased IoT adoption in education is expanding the attack surface

The escalating use of IoT devices in educational environments has undoubtedly broadened the attack surface, as evidenced by a 104.8% year-over-year increase in IoT malware attackstargeting the education sector. This surge aligns with the expanding role of connected devices in education: the sector has the fifth-highest number of unique IoT devicesidentified in the Zscaler cloud. As schools adopt more devices for classroom management, administrative tasks, and facility operations, their security measures are struggling to keep up with the pace of change, putting sensitive student and institutional data at greater risk.

4. Growing OT threats are putting healthcare's critical infrastructure at higher risk

Healthcare organizations face distinct challenges when it comes to OT threats as medical systems rely on critical connected devices. IoT malware attacks are up over the past year and the OT environment remains highly vulnerable. ThreatLabz surveyed large-scale OT environments in the healthcare and manufacturing industries to assess their internal attack surface and identify key risks. One concerning finding is that many OT environments still rely on outdated legacy Windows systems, which are rife with vulnerabilities. Compounding the issue, most physical sites are managing more than 500 unique OT devices in a ThreatLabz analysis of large-scale deployments, creating a significant security risk: if even one device is compromised, the remaining 499 become vulnerable to infection. What's more, an analysis of a healthcare-specific OT environment revealed a nearly equal split between internal (east-west) and external (internet-facing) network traffic, highlighting the growing complexity of modern healthcare environments. Any breach can have far-reaching consequences for patient care and safety, emphasizing the urgent need for stronger security measures in healthcare's OT landscape.

5. Zero trust segmentation is necessary for critical sector security

Securing real-world critical infrastructure networks, including healthcare, manufacturing, and government facilities, has always been a challenge. These environments are filled with unprotected identities and IoT/OT endpoints that typically cannot support traditional security agents, making them more vulnerable to cyberattacks. The threat extends beyond initial breaches. Attackers exploit weaknesses to move laterally across connected IT and OT networks, embedding ransomware and other malicious payloads along the way. To this end, government agencies such as the FBI and CISA have issued guidance urging organizations to segment their networks to prevent lateral movement. However, given the inherent complexity of IoT/OT systems, a key part of this defense strategy is to shift from traditional segmentation measures to a zero trust model for segmentationin order to properly secure internet-connected devices.

Public link

Please use the above public link if you want to share this noodl on another website.