The UK beefs up smart home security by going after bad default passwords

Share via:


Under the update, manufacturers will have to make it easy for people to report security issues. The PSTI also now requires them to give clear expectations for when those filing the reports can expect acknowledgment and status updates afterward. Violations of the law can result in fines as high as £10 million (about $12.5 million USD) or 4 percent of their “qualifying worldwide revenue,” depending on which is higher.

The law would apply to a wide range of products, but a big target here is likely IoT devices like smart TVs, smart plugs, or smart speakers. Many of these, particularly the cheapest commodified ones, end up as targets online, thanks to lax security practices. This doesn’t necessarily address all of those practices, but bad default passwords are low-hanging fruit that should be tackled.

In the US, the FCC is trying something similar with its forthcoming Cyber Trust Mark program. Much like the federal Energy Star program, the Cyber Trust Mark logo indicates which products comply with the program’s requirements, including strong default passwords.

But also like Energy Star, nobody is forcing companies to go along with it. And while Energy Star has clear, explainable benefits like lower utility bills, it’s a little harder to make it clear that a smart bulb connected to your router can be a security risk for your other devices, so it’s hard to know how effective it will be when it goes into effect.



Source link

Disclaimer

We strive to uphold the highest ethical standards in all of our reporting and coverage. We StartupNews.fyi want to be transparent with our readers about any potential conflicts of interest that may arise in our work. It’s possible that some of the investors we feature may have connections to other businesses, including competitors or companies we write about. However, we want to assure our readers that this will not have any impact on the integrity or impartiality of our reporting. We are committed to delivering accurate, unbiased news and information to our audience, and we will continue to uphold our ethics and principles in all of our work. Thank you for your trust and support.

Popular

More Like this

The UK beefs up smart home security by going after bad default passwords


Under the update, manufacturers will have to make it easy for people to report security issues. The PSTI also now requires them to give clear expectations for when those filing the reports can expect acknowledgment and status updates afterward. Violations of the law can result in fines as high as £10 million (about $12.5 million USD) or 4 percent of their “qualifying worldwide revenue,” depending on which is higher.

The law would apply to a wide range of products, but a big target here is likely IoT devices like smart TVs, smart plugs, or smart speakers. Many of these, particularly the cheapest commodified ones, end up as targets online, thanks to lax security practices. This doesn’t necessarily address all of those practices, but bad default passwords are low-hanging fruit that should be tackled.

In the US, the FCC is trying something similar with its forthcoming Cyber Trust Mark program. Much like the federal Energy Star program, the Cyber Trust Mark logo indicates which products comply with the program’s requirements, including strong default passwords.

But also like Energy Star, nobody is forcing companies to go along with it. And while Energy Star has clear, explainable benefits like lower utility bills, it’s a little harder to make it clear that a smart bulb connected to your router can be a security risk for your other devices, so it’s hard to know how effective it will be when it goes into effect.



Source link

Disclaimer

We strive to uphold the highest ethical standards in all of our reporting and coverage. We StartupNews.fyi want to be transparent with our readers about any potential conflicts of interest that may arise in our work. It’s possible that some of the investors we feature may have connections to other businesses, including competitors or companies we write about. However, we want to assure our readers that this will not have any impact on the integrity or impartiality of our reporting. We are committed to delivering accurate, unbiased news and information to our audience, and we will continue to uphold our ethics and principles in all of our work. Thank you for your trust and support.

Website Upgradation is going on for any glitch kindly connect at office@startupnews.fyi

More like this

Indie App Spotlight: ‘Pestle’ is the ultimate recipe manager,...

Welcome to Indie App Spotlight. This is a weekly...

Matrimony.com Forays Into Online Job Market With ‘ManyJobs’

SUMMARY ManyJobs.com will target “grey collar” job seekers and...

Tesla says it has reached a ‘conditional’ settlement in...

Tesla and Rivian may have resolved a lawsuit...

Popular

Upcoming Events

Startup Information that matters. Get in your inbox Daily!