New research from security company Armis has revealed the riskiest assets introducing threats to global businesses. Armis’ research focused on connected assets with the most attack attempts, weaponized Common Vulnerabilities and Exposures (CVEs), and high-risk ratings. Based on data from the Armis Asset Intelligence Engine, it found that internet of medical things (IoMT) assets- connected devices used in medical/healthcare environments – are the most susceptible to unpatched, weaponized CVEs, while operational technology (OT) assets are the most attacked.
IoMT assets most susceptible to unpatched, weaponized CVEs
Armis researchers identified a significant number of network-connected assets susceptible to unpatched, weaponized CVEs, listing the highest percentage of devices of each type that had these CVEs between August 2022 and July 2023. Unpatched, these assets introduce significant risks to businesses.
According to Armis, the assets most vulnerable to unpatched, weaponized CVEs are:
- Media writers (IoMT), 62%
- Infusion pumps (IoMT), 26%
- IP cameras (IoT), 26%
- Media players (IoT), 25%
- Switches (IT), 18%
- Engineering workstations (OT), 17%
- Personal smartwatches (IoPT), 16%
- Routers (IT), 15%
- SCADA servers (OT), 15%
It is unsurprising to see medical assets topping the list. In January 2022, Cynerios’s State of IoMT Device Security report found that more than half (53%) of the internet of things (IoT) and IoMT devices used in US healthcare pose critical cybersecurity risks with significant vulnerabilities that could jeopardize patient safety, data confidentiality, or service availability if exploited. In June this year, it was revealed that one-third of the UK’s National Health Service (NHS) Trusts have no method for tracking IoT devices, potentially exposing information and services to significant security risks.
OT assets most targeted by attacks
The top 10 asset types with the highest number of attack attempts are distributed across IT, OT, IoT, IoMT, internet of personal things (IoPT), and building management system (BMS) assets, Armis found. This demonstrates that attackers prioritize potential access to assets rather than their type, reinforcing the need for security teams to account for all physical and virtual assets as part of their security strategy, the firm said.
The top 10 device types with the highest number of attack attempts are: