Calling all manufacturers – EU connected device consultation
Further to the political agreement reached by the co-legislators on the Cyber Resilience Act (CRA), and pending its formal adoption and entry into force, the European Commission is currently taking preparatory steps for the CRA implementation. This includes initial informal consultations and a series of virtual events for manufacturers. This is without prejudice to the […]
SafeShark Exposes Alarming Non-compliance Rates in Connected Consumer Devices
Following this week’s conformance deadline (April 29th), SafeShark, the leading authority in connected product testing, has conducted analysis of more than 100 connected consumer devices currently on the market. The results show that a staggering three-quarters of these devices are still not compliant.
UPDATED! UK and EU Cyber Security Legislation for Connected Devices
UPDATED: Our exclusive walkthrough of connected device legislation, which affects all connected products on the UK and EU markets, has been updated ahead of the April 29th deadline. Get your copy now.
Oxford Professor warns government over smart speaker vulnerability
Oxford University Professor of Cybersecurity Sadie Creese has warned against the potential security threat from smart speakers while giving evidence to the Science, Technology and Innovation Select Committee.
Beko selects SafeShark as ‘clear choice’ for compliance partner
Beko is the latest brand to demonstrate its connected device compliance using SafeShark’s proprietary PSTI testing – the quick, simple way to prove products are in line with legislation before the April 29th conformance deadline. “Working with SafeShark has been a great experience for us at Beko,” said Arcelik Head of IoT Security Çağatay Büyüktopçu. […]
On April 29th 2024, the UK will make history as the first country in the world to introduce ground-breaking protections for consumers using connectable devices, from smart phones and games consoles to smart doorbells, connected appliances and home systems. The regulatory regime, introduced through the Product Security and Telecommunications Infrastructure Act (PSTI) 2022 and the PSTI Regulations […]
New draft RED standards through the first review phase
SafeShark has been taking part in the latest standards development work in CEN/CENELEC, preparing for the introduction of the RED cyber security requirements in Aug 2025. Three new standards have been developed EN 18031-1, -2, -3 which cover: The first review involved national administrations e.g. BSI in the UK, reviewing the drafts and submitting comments. […]
In this SafeShark webinar with the Department for Science, Innovation and Technology (DSIT), and the Office for Product Safety & Standards (OPSS) - the enforcement authority responsible for ensuring compliance with the PSTI regulations on behalf of DSIT - we asked those responsible for shaping the legislation, driving device safety and enforcing compliance to answer […]
SafeShark selected for DSIT-funded cyber accelerator for second year running
SafeShark is delighted to have been selected for the DSIT-funded Cyber Runway scheme as part of the ‘Scale’ cohort of innovative cyber companies for 2024/25. The largest cyber accelerator in the UK, Cyber Runway is part of the government’s £2.6bn National Cyber Strategy to protect and promote the UK online. The scheme is designed to address the […]
Unprotected connected devices enabling abuse say MPs
MPs from the Culture, Media and Sport Committee have called on the government to tackle the use of connected home devices as abuse enablers. The committee heard evidence that the ‘vast majority” of domestic abuse cases now feature a cyber element, with unprotected smart devices – such as cameras, smart speakers or baby monitors – […]
‘Smart’ is a major driver for those looking to move
A survey, carried out by Samsung, of 1,000 adults looking to move home in the next five years, combined with Google search trends analysis between March 2022 and March 2023, has shown that Smart is a key criteria for those looking for their next home. A third of respondents would be much more likely to […]
Following the introduction of the Product Security and Telecommunications Bill last December, the UK Government has now set a date for when new cyber security regulations will apply to connectable products. Businesses involved in the supply chains of connectable will need to be compliant with the new regime from the 29th April 2024. Failure to […]
SafeShark shortlisted for Most Innovative Cyber SME 2023
We are so excited to have been shortlisted for the UK’s Most Innovative Cyber SME 2023. The award is given by Infosecurity Europe in partnership with The Department of Science, Information and Technology (DSIT) and judged by a panel of cybersecurity experts. They have selected fourteen of the UK’s most creative and original information security […]
Has Adoption of ‘Connected Devices’ Outpaced Security?
“We’ve all seen the rush to deploy the new wave of connected devices but the speed at which these devices have been embraced may threaten fundamental security protocols.” Read this great article from Keysight Technologies VP Security Solutions Scott Register on EE Times as he explores the current IoT device landscape. One of his key […]
Three quarters of connected device manufacturers will be non-compliant
New research published today shows that the majority (73%) of IoT and connected device manufacturers would not be compliant with the imminent requirements of the Product Security and Telecoms Infrastructure bill. In fact, only just over one in four can rest easy knowing they will meet the initial bar. Read more here and get in […]
The latest ENISA threat landscape publication highlights weak IoT cyber security as a major factor in an increase in denial of service attacks. Attacks are often launched from consumer devices and broadband routers - sometimes using vulnerabilities as much as 8 years old - showing how many users are slow to update products. As for […]
UK parliament approves new smart device security bill
The UK Parliament has approved the Product Security and Telecommunications Infrastructure Bill, first proposed a year ago by the government. Following the votes by both the House of Commons and Lords, the law only needs royal assent before taking effect. The PSTI bill introduces a regulatory scheme for connected consumer devices to make security design […]
Consumer concerns over security of connected devices and certification recommended, says report
TechUK’s sixth edition of its ‘State of the Connected Home’ report has been published. It surveys a nationally representative sample of 1,000 adults across the UK to ask about their awareness, interest, and ownership of a range of connected or ‘smart’ home products. Some key findings include: The market is seeing increased product diversification and […]
57% of all connected devices vulnerable to medium-high severity attacks
Members of the UK House of Commons Digital, Culture, Media and Sport Committee are to investigate the dangers posed by hostile and criminal actors to connected technology, a branch which ranges from virtual assistants, smart appliances and wearable devices to smart homes and cities. Despite being used in homes, cities, businesses, and hospitals, research has […]
Some great news to kick off the week... we're delighted to be able to announce that SafeShark has won a coveted place on the Department for Digital, Culture, Media and Sport (DCMS) funded Cyber Runway accelerator programme! ✨🎈🎉 We are beyond thrilled to be joining such an amazing 'Grow' cohort and we can't wait to […]
UPDATE: Draft EU rules target smart devices with cybersecurity risks
Smart devices connected to the internet such as fridges and TVs will have to comply with tough European Union cybersecurity rules or risk being fined or banned from the bloc. The EU executive announced its proposal, known as the Cyber Resilience Act, today (September 15). It is likely to become law following input from EU […]
The shift to home working has seen a ‘major rise’ in cyber attacks via mobiles and IoT devices as 79% of companies report an increase in vulnerability due to decentralised working. ‘Devices and Things’ is one of the four major threat sectors, which is why SafeShark is here to ensure manufacturers prepare, protect and enhance… […]
LG is first company to achieve certification to the new SafeShark and BSI Consumer IoT Verification
LG has become the first company to pass SafeShark and BSI’s newly launched Consumer IoT Verification Scheme, demonstrating its commitment to cyber security best practice. Pictured (l-r) DTG Strategic Technologist and SafeShark director Alex Buchan, LG Electronics Director EU Innovation Digital TV R&D Stuart Savage and BSI Global Digital & Connected Product Sales and Operations […]
SafeShark selected as finalist in DCMS ‘Most Innovative Cyber SME 2022’ competition
SafeShark has been selected as one of the UK’s 14 most creative and original information security businesses in the UK. SafeShark, a Joint Venture between DTG Testing and Connect Devices, backed by BSI to provide the leading independent certification for new IoT cybersecurity standards, has been shortlisted in the UK’s Most Innovative Cyber SME 2022 […]
Breakfast Briefing: Cybersecurity Standards in action
As SafeShark and BSI get ready to announce the first global consumer device manufacturer to attain our new Cybersecurity certification, we’re inviting representatives from across the connected devices sector to get up close and in person with the tech, the process and the standard. This session of Parliament is one of the busiest for the […]
Product Security and Telecoms Infrastructure Bill in Queen's Speech
The bill, which aims to improve “cyber resilience and digital connectivity” across the UK, was one of the five bills moved into the current session from the last. It contains the legal compliance obligations for manufacturers of IoT connected devices. Read more here.
New Scottish co-ordination centre to tackle cyber threats
Scotland’s ability to prevent and respond to a growing cyber threat will soon be increased with the creation of a new Scottish Cyber Co-ordinations Centre (SC3). This £1.5 million centre will pool expertise to: share intelligence; provide early warning of cyber threat and attacks; manage incidents and lead recovery. It is a part of the […]
Report: 90% of technology decision-makers deem security a 'business priority'
According to the PSA Certified 2022 Security Report, 90% of its technology decision-maker respondents have increased the importance placed on security in the past 12 months, making it one of their top three business priorities. The annual report, now in its second year, surveyed 1,038 technology decision-makers across Europe, USA, and APAC. They found that […]
Study: UK firms most likely to pay ransomware hackers
A new report by security firm Proofpoint suggests that around 82% of British firms, which have been victims of ransomware attacks, paid the hackers in order to gain back their data. The global average was 58%, making the UK the most likely country to pay cyber-criminals. Proofpoint’s data also found that more than three-quarters of […]
Record levels of investment into UK’s cyber security sector
New government data shows that 1,800 UK-registered cyber security firms have generated a total of £10.1bn in revenue in the most recent financial year, a massive 14% increase from the previous financial year. The DCMS Annual Cyber Sector Report, which tracks the growth and performance of the UK cyber security sector, reveals the industry contributed […]
Jan 28th is Data Protection Day – are you taking action?
Cyber security and data protection and privacy is becoming an increasingly hot topic amongst consumers. From high profile cyber attacks and hacks, to GDPR and awareness of personal permissions, the UK population is becoming ever more savvy about how their data is being used, and by whom. Our 2021 Consumer survey report – State of […]
PSTI bill introduced to parliament for second reading
The Product Security and Telecommunications Infrastructure Bill has its second reading today, 26 January 2022. The bill would make provisions about the security of internet-connectable products and products capable of connecting to such products; to make provision about electronic communications infrastructure; and for connected purposes. The Bill would: Allow the Secretary of State to make […]
New laws proposed by DCMS to strengthen UK resilience to cyber attacks
DCMS has launched two consultations seeking the public’s views on new proposals stated to improve the UK’s resilience to cyber attacks. The following statement was released by the Minister for Media, Data and Digital Infrastructure: "It is vital that cyber security is a fundamental part of our country’s digital transformation journey." Julia LopezMinister for Media, […]
A new cyber security vulnerability has emerged which has potentially wide-ranging impacts for the consumer electronics device, television and media industries. The vulnerability impacts a Java-based logging application called log4j, which is an open source application used across a wide range of enterprise applications such as WebEx, FileZilla FTP. Callum Wilson from DTG cybersecurity joint […]
SafeShark wins Highly Commended in Security Innovation of the Year
SafeShark, a Joint Venture between DTG Testing and Connect Devices and backed by BSI, has been awarded the Highly Commended medal for ‘Security Innovation of the Year’ at the 2021 Security Excellence Awards. Beating fellow finalists White Bullet, Quantum Security, Stellar Cyber, Egress, Ermetic, Evina, Ava Security and Clayton, SafeShark may not have taken home […]
IoT Cyber security legislation introduced to Parliament
The Product Security and Telecommunications Infrastructure (PSTI) Bill, was introduced to Parliament today (November 24th 2021). The new law will require manufacturers, importers and distributors of connected devices to ensure they meet tough new cyber security standards - with heavy fines for those who fail to comply. It will prevent the sale of consumer connectable products […]
The EC has today (October 29th) adopted the delegated act for RED (Radio Equipment Directive) which relates to cyber security. This means that by the end of this year, the European standards bodies like ETSI will begin work on creating consumer IoT cyber security standards that can be used to demonstrate conformity to these acts. […]
Consumer IoT Security: Regulation, Obligation and Opportunity
BSI recording: With UK government announcing proposed regulation for consumer IoT products for the year, there is a need for manufacturers to take ownership of security in their smart and connected products. Find out more from BSI and SafeShark.
Cyber security requirements for the EU market under discussion
SafeShark is active in European activities to scope requirements for new cyber security standards. The new standards will demonstrate cyber security performance of consumer IoT and industrial products so that the products can be placed on the EU market.
This webcast recording with DCMS, the National Cyber Security Centre and Which? is dedicated to the IoT security standards currently being debated as part of the Product Security and Telecommunications Infrastructure Bill. Watch now.
To help finalise the scheme processes and to provide an opportunity for manufacturers to learn more about the scheme, we are running a Pilot phase in April.