To embed, copy and paste the code into your website or blog: Last December, the IoT Cybersecurity Improvement Act became law in the U.S. The legislation outlines security requirements that federal Internet of Things (IoT) devices need to contain going forward. Broadly, IoT refers to any devices that are connected to a network which can share and analyze data. Some IoT examples are smart phones, activity trackers, smart medical devices, and building security systems. The new law is not a surprise, especially since cybersecurity reform has been trending globally as a result of our world becoming increasingly digitized. Since IoT devices can be vulnerable to digital attacks, they need to be secure in order to safeguard sensitive data. The reach of this law expands further than just government agencies, but also to manufacturers creating federal IoT devices and any government contractors using IoT devices. It is important for any person or entity subject to this law to understand the obligations imposed and keep apprised of relevant updates.