Forescout Releases Inaugural Device Cloud Research based on Leading Device Intelligence
- Expanded Forescout Device Cloud now includes more than 8 million IT, IoT and OT devices
- New Forescout Device Cloud Report reveals cybersecurity risks associated with today’s healthcare IT environments; OT systems represent a growing attack surface
- Healthcare riddled with devices running legacy Windows; 70% of Windows devices will no longer be supported by
Microsoftin January 2020
“The Forescout Device Cloud provides us with game changing data from millions of devices around the world, and what we are releasing today is just the tip of the iceberg,” said
The convergence of IT, IoT and OT makes it more difficult for the healthcare industry to manage a wide array of hard-to-control network security risks. IoT and OT devices are rapidly increasing in numbers, but traditional IT still represents the most vulnerable attack surface.
The Forescout Device Cloud Report key findings include:
Healthcare OT increases attack surface
Within the OT device category, the three most common connected medical devices found were patient tracking and identification systems (38 percent), infusion pumps (32 percent) and patient monitors (12 percent). Considering the growing number of vulnerabilities in OT environments, we can see an increase in the attack surface in healthcare environments.
Healthcare organizations riddled with devices running legacy Windows operating systems
The Forescout Device Cloud Report highlights that 71 percent of Windows devices within these healthcare deployments are running Windows 7, Windows 2008 or Windows Mobile, with
Diversity of operating systems and vendor sprawl creates headaches
The diversity of device vendors and operating systems present on medical networks adds to the complexity and increases security challenges. Forescout’s research found that 40 percent of healthcare deployments had more than 20 different operating systems. When looking at the different types of operating systems found on medical VLANs, 59 percent were Windows operating systems and 41 percent were a mix of other variants, including mobile, embedded firmware and network infrastructure and many more.
In addition, more than 30 percent of healthcare deployments had 100 or more device vendors on their network. Patching in healthcare environments, especially acute care facilities, can be challenging and require devices to remain online and available. Some healthcare devices cannot be patched, may require vendor approval or need manual implementation by remote maintenance personnel.
Vulnerable protocols are leaving a door open
Eighty-five percent of devices on medical networks running Windows OS had Server Block Messaging (SMB) protocol turned on, allowing uncontrolled access for attackers to get beyond the perimeter and move laterally. Device manufacturers sometimes leave network ports open by default—often unbeknownst to IT and security staff.
Media Relations Contact:
Investor Relations Contact:
Source: ForeScout Technologies, Inc.