In light of the news today that the UK Government devising a code of practice for manufacturers to ensure IOT devices are secure and protected, please see below a comment from David Emm, principal security researcher at Kaspersky Lab.
Please let me know if you would like to speak with a spokesperson from Kaspersky Lab on the matter further.
David Emm, principal security researcher at Kaspersky Lab UK, said: “It is crucial that retailers and manufacturers secure the devices which are now entering our homes – figuratively speaking, it is no good asking people to lock their windows and front door whilst leaving the back door open. At the same time, consumers need to be aware of the threat that connected devices can present. Kettles, cookers, toasters, entertainment systems, children’s toys and more now provide a gateway into our home networks and access to our personal data.
“There have been many examples of everyday objects being hacked and this could potentially be just the beginning unless these devices are secured. Manufacturers have a responsibility to implement security by design into smart devices – and the government code of practice will provide positive encouragement to companies. Even though the code of practice isn’t mandatory, it will lay down a framework for companies when developing smart devices – as long as consumers can see at a glance if a product is compliant.
“Nevertheless, it’s also essential for consumers to consider security when buying smart devices. In particular, check that it’s possible to disable functions that you don’t need, to reduce your attack surface, make sure that the product can be updated easily and change any default passwords that come with the device.”