UK Government Enhances Security for Enterprise Connected Devices
Severity: Medium (Score: 51.9)
Sources: Gov.Uk, Wired-Gov
Summary
The UK government has published its response to the 2025 Call for Views on enterprise connected device security, addressing significant vulnerabilities in commonly used devices. Research revealed that many devices lack essential security features, have outdated software, and are poorly configured, increasing the risk of cyber attacks. The Department for Science, Innovation and Technology (DSIT) aims to strengthen baseline cybersecurity requirements for devices not covered by the Product Security and Telecommunications Infrastructure (PSTI) Act 2022. Proposed interventions include a new Code of Practice to improve security standards and align with existing regulations. The government emphasizes collaboration with industry and academia to enhance device security and reduce the economic impact of cyber threats. Feedback from stakeholders has been incorporated into the government's strategy, which will continue to evolve as new challenges emerge. The initiative aims to foster innovation while ensuring that security measures are effective and clear for businesses. Key Points: • The UK government is enhancing security standards for enterprise connected devices. • Research shows many devices lack adequate security features and are at risk of cyber attacks. • A new Code of Practice will be developed to align security requirements with existing regulations.