California looks set to regulate IoT devices, becoming the first US state to do so and beating the Federal Government to the post.
The State legislature approved ‘SB-327 Information privacy: connected devices’ last Thursday and handed it over to the Governor to sign. The legislation introduces security requirements for connected devices sold in the US. It defines them as any device that connects directly or indirectly to the internet and has an IP or Bluetooth address. That covers an awful lot of devices.

The link for this article located at Naked Security/Sophos is no longer available.