Cyber security is nowadays synonymous with the reliability of elements connected to the internet. Better control of factories, security systems or even individual sensors is possible through the use of Internet of Things technology. The security of the aforementioned structures and the data they transmit has been a major concern in the development of IoT solutions for wireless data transmission. If we add to this prospect of low-cost end devices, we can seriously consider implementing such solutions in critical infrastructure areas. This article aims to assess the state of the art and experience and identify the main risks and directions for further development in order to improve the cyber security situation of LoRaWAN-based networks. LoRaWAN meets the three key requirements of IoT applications (low cost, large-scale deployability, high energy efficiency) through an open standard and the construction of autonomous networks without third-party infrastructure. However, many research issues remain to be solved/improved such as resource allocation, link coordination, transmission reliability, performance and, above all, security. Thus, we have defined a research gap in the area of LoRaWAN security. The contribution of this work is to structure the knowledge in the field of LoRaWAN security, based on previous publications and our own experience, in order to identify challenges and their potential solutions. This will help move LoRaWAN security research to the next stage.