UK becomes first country to ban default bad passwords on IoT devices

April 30, 2024Source: The Record

Found this useful? Share it with your network

Seven years after a significant cyberattack disabled access to major US websites using a distributed-denial-of-service (DDoS) attack via the Mirai botnet, the UK has legislated to counter similar threats by becoming the first country to ban default guessable usernames and passwords on IoT devices. The Product Security and Telecommunications Infrastructure Act 2022 sets new minimum security standards for IoT device manufacturers, requiring them to inform consumers about the duration of security updates and forbidding weak default passwords to reduce the risk of cyberattacks. This legislation, enforced by the Office for Product Safety and Standards, also subjects non-compliant manufacturers to fines or recalls, highlighting a proactive approach to enhancing cybersecurity in an increasingly connected world.

Read Full Article

Opens on The Record

More News

AMA Asking For Stronger Safeguards on AI Mental Health Chatbots

April 29, 2026MobiHealthNews

Andrea Daugherty Appointed Chief Information and Digital Transformation Officer at ARMC

April 24, 2026arrowheadregional.org

Craig Richardville Appointed Chief Digital and Information Officer at UF Health

April 13, 2026ufhealth.org

Former AMA Exec Margaret Lozovatsky Named CDIO At Premier Health

April 10, 2026premierhealth.com

Signature Healthcare Diverts Ambulances Following Cybersecurity Incident

April 8, 2026SecurityWeek

More Than 100 Hospitals Suing HHS Over Alleged Underpayment

April 6, 2026MedCity News