UK legislation seeks to enforce minimum security requirements for internet-connected devices. Bill would ban default default passwords, force firms to be transparent to customers about what they are doing to fix security flaws in connectable products. Fines of up to $13 million would apply to non-compliant manufacturers, importers and distributors. Bill also includes a proposal to appoint a regulator to oversee compliance with the standards, backed by the ability to fine violators up to 10 million pounds ($13.3 million) The law would be applicable to both physical shops and online retailers.”]
Source: https://www.cuinfosecurity.com/uk-legislation-seeks-mandatory-security-standards-for-iot-a-17994