How to secure your IoT devices

The Internet of Things (IoT) has revolutionised the way we live our lives.

Whether it’s a doorbell, lightbulb, voice assistant (Alexa, Siri), kitchen appliance, or children’s toy, everything connected to the internet falls under this category. You may think of it as a “smart device”.

Many smart devices have huge capabilities, but neglect security. Cyber criminals will exploit this vulnerability to infiltrate an otherwise secure network or simply use the devices themselves.

We can protect ourselves from the threats that the IoT poses whilst continuing to enjoy all that smart technology has to offer by following the recommendations below:

Read our top tips to reduce your risk of cybercrime:


Update the Operating System

Equally important, the Operating System of which the IoT application / online account is accessed must remain up-to-date to prevent cyber criminals from harnessing vulnerabilities that enable remote access and control over the IoT device.

Evaluate settings

Default settings are not always applied with security in mind. Take time to enable security settings as applicable and disable all that offer no benefit to the business or usability of the device.

Turn on 2 Step Verification (2SV)

Where possible, enable 2SV to add an extra layer of security to the application / online account.

Disconnect any IOT no longer in use

When a smart device serves no purpose to the business, immediately disconnect it from the network.

Change default passwords

Many IoT products are produced with a default password either commonly used or easily obtainable online. Use strong passwords for a truly robust security solution.

Secure the router

Change the default administrator credentials for the router settings (accessible online) and also change the issued Wi-Fi password. Ensure to use WPA2 encryption to disguise the network from immediate view.

Enable a Firewall

This will monitor and block any unauthorised connections to the network.

Connect to a separate/guest network

Any compromise of an IoT device will remain quarantined within the network of which it is connected, keeping the business network secure.

Update software

As with all software, IoT needs updating to receive security fixes for vulnerabilities. Enable automatic updates to be applied automatically, to never miss the latest update release.

Secure Connected Device Accreditation

If you are a company looking for SBD membership, it will be necessary not only to meet the specific physical security requirements, but if your product incorporates the above then you will need to meet our requirements to obtain the new Secure Connected Device accreditation to ensure that your product or service have achieved the appropriate level of IoT standards and certifications.

Further advice and information can be obtained from the SBD Development Officer or click here

Internet of Things SBD Products