Over 90% of data transactions on IoT devices are unencrypted
New research by Zscaler highlights how companies are putting themselves at risk through the use of poorly secured IoT devices. The report found that a staggering 91.5% of IoT data transactions on enterprise networks are not encrypted. If a threat actor manages to intercept that traffic, they can therefore access and manipulate that traffic by means of a man-in-the-middle (MitM) attack.
The research also shows that a mere 18% of IoT devices encrypts all traffic using Transport Layer Security (TLS). 41% of devices do not use TLS at all, and another 41% use TLS selectively, meaning for certain connections only.