What you need to know:
-
80% of responding organizations consider mobile devices critical to their operations, while 95% are actively using IoT devices
-
96% of critical infrastructure respondents use IoT devices, with % having experienced a significant security incident involving a mobile or IoT device
-
77% of respondents predict that AI-assisted attacks, such as deep spoofing and SMS phishing, are likely to succeed
NEW YORK – Today, Verizon Business released its 2024 Mobile Security Index (MSI) report outlining the top security threats to mobile and IoT devices. This year’s report, in its seventh iteration, goes beyond mobile use at the employee level and extends to the use of IoT devices and sensors and the security concerns that the growth of these devices may present especially as remote work continues to be a trend. This expanded view of mobile security concerns for organizations shows the evolving threat landscape that CIOs and other IT decision makers must face.
As the dependence on mobile devices increases, so do the risks, especially in critical infrastructure sectors where the consequences of security breaches can be catastrophic. MSI 2024, which surveyed 600 people responsible for security strategy, policy and management, underscores this point.
Employees are using more mobile and IoT devices, leading to increased cyber risks
The survey reveals that 80% of respondents consider mobile devices critical to their operations, while 95% actively use IoT devices. However, this great support comes with significant security concerns. In critical infrastructure sectors, where 96% of respondents report using IoT devices, more than half report experiencing serious security incidents that led to data loss or system outages.
“These findings highlight the continued friction employers face as more and more work is done on personal mobile devices,” said Phil Hochmuth Research VP, enterprise mobility at IDC. “That’s why we’re seeing more and more employers move from a pure bring-your-own device model to employer-provided devices where CIOs can have greater governance to protect critical infrastructure from cyberattacks .”
In addition, says Hochmuth, organizations must adopt strong frameworks such as Zero Trust and the National Institute of Standards and Technology Cyber Security Framework (NIST CSF) 2.0, and comply with mandates such as the European Union’s NIS2 Directive.
Emerging AI cyberthreats meet new AI defenses
New artificial intelligence (AI) technologies are expected to worsen the mobile threat landscape, but also present opportunities for protection. A staggering 77% of respondents predict that AI-assisted attacks, such as deep spoofing and SMS phishing, are likely to succeed. At the same time, 88% of critical infrastructure respondents acknowledge the growing importance of AI-assisted cybersecurity solutions.
Accounting for IoT growth in cybersecurity planning
With companies using more and more IoT devices, their digital landscapes are evolving, creating a need for cybersecurity strategies to evolve in nature.
“The Industrial Internet of Things (IIoT) is creating a massive expansion in mobile device technology that goes beyond phones, tablets and laptops. Enterprise networks now include all kinds of sensors and purpose-built devices that monitor, measure, manage and control commercial tasks and data flow,” said TJ Fox, SVP of Industrial IoT and Automotive, Verizon Business. “This growth IIoT brings with it a commensurate need for more knowledge, awareness and IT solutions to ensure the security of those increasingly sophisticated networks. The growing importance IoT plays in our customers’ technology ecosystem underscores why it must be a component in every sound cyber security program.”
What business leaders need to know
MSI 2024 helps inform cybersecurity decisions for business leaders of all sizes and in key sectors. As mobile and IoT threats grow, the need for strong security measures has never been greater. In response to these growing threats, 84% of respondents have increased their spending on mobile device security over the past year, with 89% of critical infrastructure respondents planning further increases.
This year’s MSI includes contributions from Verizon partners including Ivanti, Lookout, Jamf among others. Help your organization reduce cyber risks by deploying comprehensive security protections, ongoing employee education, and advanced threat detection capabilities. Read the Verizon Business Mobile Security Index 2024 to learn more about suggested best practices your organization can implement.