Korea Internet & Security Agency Issues Security Guidelines
for Safe Use of Robot Vacuum Cleaners
Recently, concerns have been raised about the security vulnerabilities of certain robot vacuum cleaners, prompting recommendations for security guidelines to prevent personal information leaks. This is because everyday information can be tracked through cameras attached to robot vacuums, microphones on speakers, and downloaded apps.
According to Yonhap News on October 4, the Korea Internet & Security Agency (KISA) announced security guidelines for the safe use of robot vacuum cleaners, dividing them into purchase/installation, use, and secondhand transactions.
The agency emphasized that before purchasing a robot vacuum cleaner, consumers should check the product catalog or manual to verify whether the device has received KISA IoT (Internet of Things) security certification.
After purchase, the default password must be changed to a password of at least eight characters, combining uppercase and lowercase letters, numbers, and special characters. This is to prevent hackers who may have infiltrated the supply chain from using the default settings to control the robot vacuum cleaner.
Applications for using the vacuum cleaner should always be downloaded from official app markets such as Google Play or the App Store. Installing apps from unknown sources should be avoided, and the latest security patches should be applied after installation. If suspicious IP access logs appear in app notifications, users should change their passwords and update to the latest security patches.
Apply the Latest Security Patches
The router connected to the robot vacuum cleaner should use WPA3 or WPA2 security protocols, and it should be continuously managed, including applying the latest security patches.
For features that could expose personal information, such as cameras attached to robot vacuum cleaners, it is advisable to set up additional authentication methods, such as pattern input. Taking photos or videos using the robot vacuum should be limited to when it is absolutely necessary.
Additionally, the agency advised that before trading a robot vacuum cleaner secondhand, users should perform a factory reset, delete map data from the vacuum cleaner app, and unlink the app account and automatic connections to prevent any potential information leaks.
© The Asia Business Daily(www.asiae.co.kr). All rights reserved.
