D-Link to undergo security audits for 10 years as part of FTC settlement

From zdnet.com


D-Link has agreed to a settlement with the US Federal Trade Commission in regards to a 2017 lawsuit in which the US government agency accused the Taiwanese hardware maker of misrepresenting the security of its devices and ignoring vulnerability reports.

As part of the settlement, D-Link has promised to implement a new software security program for its routers and Internet-connected cameras.

The company has also agreed to subject itself to ten years of biennial security audits from a third-party, independent auditor. The FTC gets to choose the auditor, while D-Link got to decide the certifications the auditor must obtain before allowing it to review its security program.

Read more…