Connected device manufacturer D-Link has agreed to boost the security of its routers and IP-connected video cameras as part of a settlement with the Federal Trade Commission.
The FTC sued Taiwan-based D-Link and its U.S. subsidiary in 2017, accusing the company of failing to take reasonable steps to secure its routers and IP cameras, despite claiming to offer advanced and/or easy network security. The lapses included hard-coded default log-in credentials — such as username “guest” and password “guest” — that could allow hackers to easily access cameras’ live feeds, leaving users’ login credentials for its mobile app “unsecured in clear, readable text on their mobile devices,” and mishandling of a key code to sign into D-Link software, among others.