UK cracks down on default passwords for smart devices | SC Media

The UK has become the first country worldwide to prohibit Internet of Things device manufacturers from using default usernames and passwords in their products following the approval of the Product Security and Telecommunications Infrastructure act, which seeks to bolster smart device cybersecurity, The Hacker News reports.

Aside from banning default credentials for smartphones, smart TVs, gaming consoles, smart speakers, streaming devices, smart doorbells, security cameras, baby monitors, fitness trackers, and smart household appliances, the law — which took effect on April 29 — also compels manufacturers to establish means for reporting security issues and detail the timeline of security updates for their IoT products, according to the UK’s National Cyber Security Centre. IoT manufacturers that would not comply with the law will be penalized with up to $12.5 million in fines or 4% of their annual revenues.

Such a development follows a Cloudflare report noting the persistence of Mirai botnet-based intrusions eight years after the botnet’s disruption.

The state-sponsored group is exploiting weak DMARC policies to impersonate legitimate domains.

Sophos X-Ops discovers a curious backdoored (and signed) executable, masquerading as something else entirely.

The U.S. Department of Justice announced the arrest of former cybersecurity consultant Vincent Cannady, who allegedly extorted $1.5 million from a New York-based multinational IT infrastructure services provider where he was assigned by a staffing company to address possible network security issues, reports BleepingComputer.

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.

Copyright © 2024 CyberRisk Alliance, LLC All Rights Reserved.
This material may not be published, broadcast, rewritten or redistributed
in any form without prior authorization.

Your use of this website constitutes acceptance of CyberRisk Alliance Privacy Policy and Terms & Conditions.