TLDR:
- Over half of OT environments have at least four remote access tools, increasing the risk of malicious activity.
- Non-enterprise grade tools lack key security features like auditing and multifactor authentication.
Most operational technology (OT) environments have at least four remote access tools, with one-third containing six or more, according to a report from Claroty. The prevalence of remote access tool sprawl in OT settings raises the risk of malicious threat activity. Non-enterprise grade tools lack essential security features such as auditing, role-based access controls, and multifactor authentication, making OT networks more vulnerable to attacks.
Remote access tools have been abused in recent threat campaigns, illustrating the importance of managing security tool sprawl. Organizations are struggling to manage multiple remote access tools, with some running as many as 16. The report warns of the risks associated with non-enterprise tools and highlights the need for better access control and authentication measures to protect OT networks.