TLDR:
- The UK government has introduced new laws requiring smart device manufacturers to follow minimum security standards against cyber threats.
- Manufacturers must ban easily guessable default passwords, such as ‘admin’ or ‘12345’, and provide contact details for bug reports.
In response to the increasing threats posed by cybercriminals, the UK government has implemented ‘world-first’ laws to protect businesses and consumers from cyberattacks. These regulations mandate that manufacturers of connected devices, such as smartphones and smart doorbells, must adhere to minimum security standards to safeguard against cyber threats.
Under the new rules, easily guessable default passwords, like ‘admin’ or ‘12345’, are prohibited, and manufacturers are required to publish contact details for reporting bugs and issues. This initiative aims to provide consumers with peace of mind that their personal privacy, data, and finances are secure as they rely more on interconnected devices in their daily lives.
While the UK is the first country to introduce these specific laws, other nations are also tightening cybersecurity regulations in response to the growing vulnerability of connected industries. Last month, the Federal Communications Commission approved a labeling program to identify smart products with robust cybersecurity standards, similar to the Energy Star rating for home appliances.
The National Cyber Security Centre emphasizes that businesses play a vital role in safeguarding the public from cyber threats by ensuring that smart products offer ongoing protection against attacks. This landmark legislation will empower consumers to make informed decisions about the security of the products they purchase.
Overall, the new rules imposed by the UK government signify a step towards greater cybersecurity measures and consumer protection in the rapidly evolving landscape of IoT technologies.