Securing New Devices

["US-CERT" <US-CERT () ncas us-cert gov>]

U.S. Department of Homeland Security US-CERT

National Cyber Awareness System:



Securing New Devices [ https://www.us-cert.gov/ncas/current-activity/2018/12/28/Securing-New-Devices ] 12/28/2018 03:57 
PM EST 
Original release date: December 28, 2018

Duringthe holidays, internet-connected devices also known as Internet of Things (IoT) are often popular giftssuch as 
smart TVs, watches, toys, phones, and tablets. This technology provides a level of convenience to our lives, but it 
requires that we share more information than ever. The security of this information, and the security of these devices, 
is not always guaranteed.

The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure 
Security Agency (CISA), recommends these important steps you should consider to make your Internet of Things more 
secure:

*Use strong passwords*. Passwords are a common form of authentication and are often the only barrier between you and 
your personal information. Some Internet-enabled devices are configured with default passwords to simplify setup. These 
default passwords are easily found online, so they don't provide any protection. Choose strong passwords to help secure 
your device. See Choosing and Protecting Passwords [ http://www.us-cert.gov/cas/tips/ST04-002.html ] for more 
information.

*Evaluate your security settings*. Most devices offer a variety of features that you can tailor to meet your needs and 
requirements. Enabling certain features to increase convenience or functionality may leave you more at risk. It is 
important to examine the settings, particularly security settings, and select options that meet your needs without 
putting you at increased risk. If you install a patch or a new version of software, or if you become aware of something 
that might affect your device, reevaluate your settings to make sure they are still appropriate. See Good Security 
Habits  [ https://www.us-cert.gov/ncas/tips/ST04-003 ]for more information.

*Ensure you have up-to-date software*. When manufacturers become aware of vulnerabilities in their products, they often 
issue patches to fix the problem. Patches are software updates that fix a particular issue or vulnerability within your 
devices software. Make sure to apply relevant patches as soon as possible to protect your devices. See Understanding 
Patches [ https://www.us-cert.gov/ncas/tips/ST04-006 ] for more information.

*Connect carefully*. Once your device is connected to the Internet, its also connected to millions of other computers, 
which could allow attackers access to your device. Consider whether continuous connectivity to the Internet is needed. 
See Securing Your Home Network [ https://www.us-cert.gov/ncas/tips/ST15-002 ] for more information.

________________________________________________________________________

This product is provided subject to this Notification [ http://www.us-cert.gov/privacy/notification ] and this Privacy 
& Use [ http://www.us-cert.gov/privacy/ ] policy.

body { font-size: 1em; font-family: Arial, Verdana, sans-serif; font-weight: normal; font-style: normal; color: 
#333333; } ________________________________________________________________________

A copy of this publication is available at www.us-cert.gov [ https://www.us-cert.gov ]. If you need help or have 
questions, please send an email to info () us-cert gov. Do not reply to this message since this email was sent from a 
notification-only address that is not monitored. To ensure you receive future US-CERT products, please add US-CERT () 
ncas us-cert gov to your address book. 

OTHER RESOURCES: Contact Us [ http://www.us-cert.gov/contact-us/ ] | Security Publications [ 
http://www.us-cert.gov/security-publications ] | Alerts and Tips [ http://www.us-cert.gov/ncas ] | Related Resources [ 
http://www.us-cert.gov/related-resources ]  

STAY CONNECTED: Sign up for email updates [ http://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new ]