New Law in U.K. Bans Default Passwords for Smart Devices Beginning April 2024
The U.K.’s National Cyber Security Centre (NCSC) is enforcing a new law, the Product Security and Telecommunications Infrastructure Act (PSTI), that compels smart device manufacturers to prioritize security. This legislation, taking effect on April 29, 2024, empowers consumers to make informed choices by ensuring smart devices are built with ongoing cyber protection.
A key requirement of the PSTI act is the elimination of easily guessed default passwords. These passwords, often readily available online, are a major security risk, allowing attackers to infiltrate devices and potentially launch further attacks. However, the law permits manufacturers to implement unique default passwords.
The PSTI act aims to establish a baseline security standard and prevent the creation of vulnerable devices susceptible to large-scale cyberattacks like the infamous Mirai botnet. This legislation applies to a wide range of internet-connected devices, including:
This content is locked
Login To Unlock The Content! If you haven't already registered or subscribed, please help us continue to maintain an experience free of third-party ads. We offer a 7 day free trial, after that, subscription plans start at only $1 for one week.