Since August of 2017 the U.S. Congress has been working on a new internet of things security bill designated S.1691, Internet of Things (IoT) Cybersecurity Improvement Act. The U.S. government is not known for being timely, so if they recommend security measures on connected devices, it is long past time for every organization to take action. Unfortunately, this new law does not cover consumer or even enterprise-grade connected devices, so the law doesn’t protect consumers or corporations.
While technically legacy systems are exempt, the need to secure these connected devices is no less pressing. The truth is that the vast majority of IoT, ICS and other connected devices is that they are unlikely to be patched – ever. Many devices shipping today arrive vulnerable to severe flaws. So, while not perfect, the new IoT Cybersecurity Improvement Act is a great first step in actually improving IoT security at scale.
As IoT security threats continue to increase, now is the time to make sure you’re managing all devices connected to your corporate networks. Securolytics can help — and you can request a FREE analysis of what’s on your network today with the Securolytics IoT-mini.
As always, you can learn more about the Securolytics products (including the IoT Security Appliance).
Technical Product Manager
Share This Blog