But besides the risks that come with the sheer number of these devices, the bigger problem is that people rarely try to keep them secure. And what's worse, according to Microsoft, many state-sponsored hackers are already weaponizing shadow IoT devices.
Only risks and problems arise from shadow IoT devices. They take up the company’s bandwidth and introduce additional points of entry to the company’s network. They are not checked nor sanctioned by the IT department, and thus, they pose potential risks to corporate information on the network. Through relatively simple hacks, like DNS tunneling, cybercriminals can easily steal critical company data.