Presented at Chcon 2021:
https://2021.chcon.nz/talks/tom/
A lot of people in infosec have talked about how IoT is a flaming pile of crap, myself included. My personal belief is that things are only going to improve with either standards that force manufacturers to be compliant or labelling schemes that allow consumers to choose secure products. But how’s that all going?