A new generation of Ransomware has been under research that can run through IoT devices to target central IT and OT (Operational Technology) Networks.
OT uses hardware and software to monitor and control physical processes, devices or infrastructure. OT networks can be found within many industries, including manufacturing, oil and gas, aviation, rail etc.
Forescout has researched the Ransomware called R4IoT. The proof of concept shows that using exploits with IoT devices, the use of lateral movement allows for the ability to conduct the Ransomware attack.
It’s essential to ensure that all devices within a network are patched with the latest security updates and that automatic updates are enabled.
Implementation of network segmentation will also restrict the ability of the attacker to move around devices.