Ministers have warned the many people gifted ‘smart’ gadgets at Christmas to take five minutes to protect themselves from hackers
The post-Christmas period is prime time for hackers, the government is warning households.
Many people will have been bought a ‘smart’ device as a Christmas gift, to add to the millions of electrical items already in UK homes that can connect to the internet. They include everything from smart speakers and fitness trackers to security cameras, as well as modern fridges, thermostats, and even some kettles, washing machines and toys.
However, the National Cyber Security Centre (NCSC), part of GCHQ, has warned that devices that are not secure can allow criminals to potentially log in and use it to access a households’ network, or to conduct cyber attacks.
It follows previous analysis of millions of connected homes that showed devices experience an average of 10 attacks every 24 hours, with security tools successfully blocking roughly 1,736 threats per minute.
The government has now used the period after Christmas to hammer home its message for households to take what it says is five minutes to set up two-step verification on new accounts for devices they have, or to enable automatic updates.
Cyber Security Minister Baroness Lloyd said: “Smart devices can bring families closer at Christmas, whether it’s video calls with relatives or enjoying festive films and new gadgets. Taking a moment to follow simple setup steps gives families peace of mind and lets them focus on making amazing Christmas memories.”
Jonathon Ellison, NCSC director for national resilience, said: “As you set up a smart device you received this Christmas, make sure it’s wrapped up in the essential security layers.
“Keeping your home and your information safe is the best present you can give yourself this year. We recommend following the NCSC’s guidance for using smart devices, and remember to switch on two‑step verification for all your important accounts.”
The government claims the UK is “leading the world” in protecting families from cyber threats. The Product Security and Telecommunications Infrastructure regulations, which came into force in April last year, mean that every smart device sold in the UK must meet basic security standards, including no default or easily guessable passwords.
The festive security checklist includes
- Set up two-step verification – When creating new accounts for devices and apps, turn on two-step verification (also called 2SV). This adds an extra layer of protection to accounts like email, making it much harder for criminals to access them, even if they know your password
- Create strong passwords for new accounts – Many Christmas gifts will need new accounts set up. Use strong, unique passwords – combining three random words works brilliantly, for example SantasMarmaladeHat
- Enable automatic updates – Keeps devices protected while families enjoy mince pies and tins of chocolates
- Set up parental controls – Helps to protect children’s devices with child accounts
- Check privacy settings – Turn off remote access and unnecessary data collection
