R4IoT launched by Forescout’s Vedere Labs

0
152
R4IoT launched by Forescout’s Vedere Labs
R4IoT launched by Forescout’s Vedere Labs

The R4IoT study emerged from the observation of an increase in the number and diversity of IoT, IoMT, and OT devices connected to standard corporate IT networks and the ransomware attacks that were being attempted

A new research titled R4IoT (Ransomware for IoT) has been launched by Forescout’s Vedere Labs. R4IoT is a proof-of-concept study demonstrating how next-generation ransomware can exploit IoT devices for initial access and lateral movement to IT and OT assets, with the intention to cause physical disruption to business operations.

The R4IoT study emerged from the observation of an increase in the number and diversity of IoT, IoMT, and OT devices connected to standard corporate IT networks and the ransomware attacks that were being attempted. The rapid expansion in the number of connected devices in organisations exponentially increases the risk posture of nearly every business across the globe, all related to the growth of IoT devices in corporate networks, converging IT and OT networks, and the rise of supply-chain vulnerabilities.

Sharing the insights on the report, Daniel dos Santos, Head of Security Research for Forescout said, “R4IoT is the first work to analyse how ransomware impacts IoT for these domains and delivers a full proof-of-concept from initial access via IoT to lateral movement in the IT network, and the subsequent impact on the OT network. Threat actors are exploiting a broader threat surface than before, and we see hacking groups discussing IoT access on forums today. It has become imperative to arm organisations with knowledge to extend their proactive defences and ensure IoT devices have adequate segmentation from their critical IT and OT infrastructure.”

The proof-of-concept, demonstrated in this video and detailed in Vedere Labs’ technical report, is a clear demonstration of how IoT and OT exploits can be combined with a traditional ransomware campaign. It also shows that to mitigate this type of attack, solutions are required that allow for complete visibility and enhanced control of all the assets in a network.

Ransomware’s post-COVID evolution

As reported, India is amongst the top 10 countries most affected by ransomware attacks making it a grave concern across the senior leadership and management teams.

These incidents are part of a growing and alarming trend wherein large ransomware gangs, often operating under a RaaS model, cripple the operations of multiple types of organizations simultaneously to maximize their impact.

Speaking further on this, Daniel dos Santos, Head of Security Research for Forescout added, “It’s no secret that ransomware is a rapidly evolving global threat. While businesses across the world look to optimize their operations and ride the digital transformation wave, cybersecurity teams are perennially understaffed and under-resourced. We know that being able to successfully respond to ransomware depends on being properly equipped and prepared. By developing a proof-of-concept like R4IoT, Forescout has gotten in front of the threat actors and provided tech teams with the tools they need to do the same.”

Also readCIO News interviews Shri Wangki Lowang, Minister (IT) of Arunachal Pradesh

Do FollowCIO News LinkedIn Account | CIO News Facebook | CIO News Youtube | CIO News Twitter

About us:

CIO News, a proprietary of Mercadeo, produces award-winning content and resources for IT leaders across any industry through print articles and recorded video interviews on topics in the technology sector such as Digital Transformation, Artificial Intelligence (AI), Machine Learning (ML), Cloud, Robotics, Cyber-security, Data, Analytics, SOC, SASE, among other technology topics