California are banning default password from hardware starting in 2020. THey have said that any devices sold in the region can’t have settings like password or admin, and each device must have it’s own unique password.

It will either have to have it set, or it will have to be as part of the setup of the device. They have also put in the bill that if companies ignore the bill and do suffer a problem are allowed to sue the company.

This could be good, but it also won’t stop people setting stupid password like password or admin.

There has been many attacks on devices that have taken advantage of the default passwords on the devices found all around the world, and as more and more smart devices are appearing around the world, this is something that needs to be addressed.

There is an attack, VPNFilter which targets routers and it hs been mentioned that it has infected more that half a million devices.