UK Outlaws Weak Default Passwords in Groundbreaking Cybersecurity Move

The UK enforces stringent new cybersecurity laws, mandating unique or randomized passwords for all internet-connected devices to combat cyber threats.

The UK's updated Product Security and Telecommunications Infrastructure Act prohibits easily guessable default passwords like 'admin' and '12345'.
Manufacturers must ensure devices are equipped with unique passwords or systems that generate them upon initialization.
Violations of the new regulations could result in fines up to £10 million or 4% of a company's global revenue, whichever is higher.
The law aims to prevent large-scale cyber incidents like the Mirai botnet attack, enhancing overall internet security.
Comparatively, the US and EU are still deliberating similar cybersecurity measures, with the EU's Cyber Resilience Act pending implementation.