IoT vulnerability reporting obligations set to apply in EU from 2027

Politicians negotiating the European Union’s new Cyber Resilience Act for internet-connected products have reached a provisional agreement on the contested legislation, with vulnerability reporting obligations set to enter into force in 2027. Proposed as a way to increase security standards for Internet of Things (IoT) devices, from smartphones to fridges — the details of the

act connected cyber cyber resilience cyber resilience act devices european union government industry internet internet of things iot iot vulnerability legislation products reporting resilience security security standards smartphones standards technology things vulnerability vulnerability reporting