"Brussels Intends to Propose Guidelines For Connected Devices' Cybersecurity"

The European Commission wants to ensure that commonly connected appliances are less vulnerable to cyberattacks by requiring manufacturers to improve security throughout their entire product lifecycles. The Cyber Resilience Act, which was recently unveiled in Brussels, aims to establish itself as a global leader by mandating cybersecurity standards for all products with digital components, also known as the Internet of Things (IoT), and by educating consumers about the cybersecurity impacts of the products they buy. According to Thierry Breton, Commissioner for the Internal Market, hundreds of millions of linked devices, such as computers, phones, home appliances, virtual assistance devices, vehicles, toys, and more, could be a point of entry for a cyberattack. However, most hardware and software products on the market today are exempt from any cybersecurity requirements. By establishing cybersecurity by design, the Cyber Resilience Act will help to protect Europe's economy and collective security. Manufacturers will be required by the Commission's proposals to consider cybersecurity when designing and developing their products. They must also ensure that any vulnerabilities are addressed effectively for the expected product lifetime or five years. They will be required to actively report exploited vulnerabilities and occurrences in addition to providing security upgrades for at least five years and understandable instructions for using items with digital components. Manufacturers who break the law risk having their products permanently or temporarily banned from the Single Market, as well as a fine ranging from 2% to 5% of global sales. This article continues to discuss the Cyber Resilience Act. 

CyberIntelMag reports "Brussels Intends to Propose Guidelines For Connected Devices' Cybersecurity"