IoT security: Follow these rules to protect your users from hackers, gadget makers told | ZDNet
The Secure by Design code of practice for the IoT has been launched by the Department for Culture, Media and Sport (DCMS) and the National Cyber Security Centre (NCSC) and is based on advice from from industry, security experts, academia, and consumer organisations.
Guidelines include telling hardware makers to eliminate universal default usernames and passwords for IoT devices, in order to ensure that products aren’t sold with basic login credentials that can easily be breached by attackers. Poor password security has been the cause of a number of IoT-related security breaches.