IoT Devices: A Growing Security Challenge

Internet of Things (IoT) devices are central to how organizations deliver services and manage infrastructure. As devices proliferate, they expand the digital attack surface. Data from Verizon’s 2024 Mobile Security Index report indicates that 70% of public sector respondents said their organization had experienced a security incident involving a mobile or IoT device (Verizon, 2024). These endpoints are no longer peripheral risks—they are often at the center of modern cyber incidents.

Even organizations that have not yet experienced a known incident face serious challenges managing their IoT systems. Devices are frequently deployed across departments and facilities, added rapidly to support new initiatives, and not always inventoried or governed by consistent security standards. The result is classic “device sprawl”: too many devices, in too many places, with too little centralized visibility. For the public sector, where systems often support critical services, this sprawl can translate directly into operational and safety risks.

To respond, users need to treat mobile and IoT security as a core element of their cybersecurity posture. That means maintaining asset inventories, enforcing configuration baselines, segmenting networks to limit blast radius, and integrating mobile/IoT telemetry into existing monitoring and incident response workflows. With attacks increasingly targeting these devices, proactive governance can be the difference between a contained incident and a larger crisis.

Reference

Verizon. (2024). 2024 Mobile Security Index (MSI). Verizon.