What is the purpose described when an attacker uses an IoT device as a backdoor to gain access to an organization's network without infecting an end system protected by IDS/IPS, firewall, and antivirus?

Gaining remote access is the idea here. By using an IoT device as a backdoor, the attacker aims to establish a foothold inside the organization’s network that can be controlled from outside or through the device itself. IoT devices often sit inside the network perimeter and may initiate outbound connections that bypass strict endpoint defenses like IDS/IPS, firewalls, and antivirus on end systems, making them convenient entrances for remote control. The scenario focuses on obtaining that entry point—remote access—rather than immediately launching a targeted attack, stealing data, or simply maintaining persistence. After gaining remote access, attackers might move later to maintain that foothold or exfiltrate data, but the described purpose is the initial access goal.