AI-powered IoT devices are transforming from simple sensors into powerful computing platforms, but this evolution is creating a critical security blind spot that enterprises are struggling to address. As these devices gain the ability to run machine learning models locally, they're becoming attractive targets for attackers who can repurpose them as sophisticated tools for network reconnaissance and intrusion, according to security researchers and industry experts.

Why Are Smart IoT Devices Suddenly High-Value Targets?

The shift toward edge AI (artificial intelligence processing that happens directly on devices rather than in the cloud) has fundamentally changed the threat landscape. IoT devices are no longer passive sensors that simply collect and transmit data. Many now include neural processing units (NPUs) that allow them to analyze large volumes of information in real time and make decisions locally. This capability makes them far more useful to attackers than traditional compromised devices.

In October 2025, Microsoft blocked a massive distributed denial of service (DDoS) attack from the Aisuru botnet, which controlled 500,000 compromised IoT devices including routers and smart cameras. What made Aisuru particularly dangerous was its use of artificial intelligence for reconnaissance; the malware could identify network weaknesses and adapt its attack patterns automatically.

"The risk is very real. The more capable the device, the more useful it becomes as a foothold for an attacker," said Javvad Malik, Lead CISO Advisor at KnowBe4. "A compromised AI-enabled endpoint could do far more than sit quietly in a botnet. It could map the network, identify valuable systems, and help automate the early stages of an intrusion. These devices need to be treated as full computing assets."

Javvad Malik, Lead CISO Advisor at KnowBe4

This represents a fundamental shift in how enterprises should think about IoT security. A compromised AI-enabled device can serve as an intelligent reconnaissance tool, mapping internal networks, identifying critical systems, and facilitating the initial phases of a larger cyberattack.

How Severe Is the Current IoT Security Problem?

The scale of IoT vulnerabilities is staggering. In 2025, enterprises faced 820,000 attacks on IoT devices per day, representing a 46% increase from the previous year, according to cybersecurity firm DeepStrike. The financial impact of a single IoT breach can be severe; an average attack costs an enterprise around $330,000. In industrial sectors, the average cost climbs to $5.56 million, while breaches involving medical IoT devices average $10 million.

One of the most troubling findings is that 98% of all IoT device traffic remains unencrypted, making them easy targets for brute force attacks. Additionally, a 2025 Palo Alto Networks report found that an average enterprise has 35,000 devices across 80 different categories, with significant visibility gaps and blind spots. The report also revealed that 77.74% of enterprise networks lack proper segmentation, meaning low-security devices like thermostats are often on the same network as high-value IT assets such as servers and laptops.

IoT devices generate enormous volumes of data; in 2025 alone, they generated 80 zettabytes of data, with 91% coming from industrial sensors. In sectors such as healthcare, manufacturing, automotive, and energy, this data is a high-value target for ransomware groups and corporate spies.

What New Attack Methods Are Emerging Against AI-Enabled Devices?

AI-powered IoT devices face attack vectors that traditional IoT devices do not. Attackers can launch adversarial attacks designed to trick machine learning models into making incorrect decisions. In high-stakes environments like industrial facilities or medical settings, this could mean tampering with smart cameras or industrial sensors to disrupt operations. Attackers can also inject corrupt data to degrade a model's accuracy and efficiency over time.

Another emerging threat is model theft. Researchers at NC State University demonstrated in November 2024 that attackers could extract the parameters of an AI model by using electromagnetic probes on Google's Edge TPU (Tensor Processing Unit), which powers many IoT devices. This method could allow attackers to steal proprietary AI models and the sensitive data linked to them, as long as they have physical access to the device.

The complexity of securing these devices has also increased dramatically. Organizations are no longer patching only firmware and software; they must also maintain machine learning models, dependencies, and data pipelines. This creates operational strain for already overworked security teams. Additionally, pushing large over-the-air updates to thousands of devices can lead to device downtime and network congestion.

How to Secure AI-Enabled IoT Devices: Key Strategies

• Enforce Zero-Trust Network Segmentation: Implement strict network segmentation to isolate IoT devices and prevent lateral movement if a device is compromised. This means ensuring that low-security devices cannot directly access high-value systems.
• Procure Hardware With Security Built In: Purchase edge AI hardware only from vendors that support secure boot and enforce cryptographic signatures for firmware and model patches. Secure boot ensures devices only run authorized firmware and prevents attackers from hijacking them.
• Implement On-Device Encryption: Use on-device encryption to keep local data secure even if the device is compromised. This prevents attackers from accessing sensitive information stored on the device.
• Deploy Behavior Analytics: Implement behavior analytics systems to detect anomalies faster. These systems can identify unusual device activity that might indicate a compromise.
• Treat Models as Security Assets: Validate training data, monitor for unexpected model behavior, and control who can update models. Staff should understand that AI systems can fail silently, producing plausible but unsafe outcomes without triggering conventional security alerts.
• Harden Devices Before Deployment: Ensure devices are hardened, segmented, inventoried, and granted only the necessary access before they are deployed. Integrate security into the procurement process rather than treating it as an afterthought.

"Enterprises need to treat models as security-sensitive assets. That means validating training data, monitoring for unexpected model behavior, and controlling who can update models. Staff needs to understand that an AI system can fail silently, resulting in it producing plausible but unsafe outcomes without triggering a conventional security alert," warned Malik.

Javvad Malik, Lead CISO Advisor at KnowBe4

When evaluating IoT vendors, security experts recommend asking specific questions about update delivery mechanisms, the duration of device support, model protection strategies, available logging features, and the capability for secure management at scale.

What Does This Mean for Enterprise IoT Strategy?

The convergence of AI and IoT is unlocking new opportunities for enterprises, but it's also exposing them to risks that many organizations are not yet prepared to handle. As Sean Whalen, a senior product marketing manager with Azure Security, warned in November 2025, as fiber-to-home speeds improve and IoT devices become more powerful, the baseline for attack size will continue to grow.

The fundamental challenge is that many IoT vendors have historically treated security as a secondary concern. However, with AI-enabled devices now serving as potential footholds for sophisticated attacks, this approach is no longer viable. Enterprises must recognize that these devices are no longer simple sensors; they are complete computing assets that require the same level of security attention as servers and laptops.

The stakes are particularly high in critical sectors. A breach involving operational technology (OT) in manufacturing, energy, or healthcare can have severe consequences beyond financial loss, including safety risks and service disruptions. As IoT devices become smarter and more capable, they also become more valuable targets. The question is no longer whether enterprises will face attacks on their IoT infrastructure, but when, and whether they will be prepared.