We’re delighted to announce Release 2 of our popular best practice guide on Vulnerability Disclosure Best Practice. This is an essential element of cybersecurity hygiene and was one of the first ever guides we published back in 2017 to support our mission to 'make it safe to connect'. So much has
Now in its third year, IoTSF's latest research report on Consumer Vulnerability Disclosure continues to shine a light on the poor performance of industry on the basic practice of vulnerability disclosure. Whilst incremental gains have been made, they are small and not worthy of celebration.
An analysis of 330 consumer IoT device manufacturers has revealed five of every six companies (86.7%, 286) don’t allow for vulnerability reporting. This would see them fall foul of new international standards and recently announced plans for a British IoT security law; as well as proposed Australian code of practice and recommendations from the US Dept of Homeland Security.
