Blog
← Back to Blog
December 25, 2017 general

Holiday Gift Guide: Securing the Smart Devices Under Your Tree

Smart home devices and holiday gifts

Merry Christmas! If you unwrapped a smart speaker, security camera, fitness tracker, smart TV, or tablet this morning, congratulations. Before you connect it to your home or office network, take five minutes to set it up securely. The Mirai botnet taught us what happens when IoT devices go online with default settings.

Before You Connect Anything

Change Default Passwords

This is rule number one for every connected device. Smart cameras, routers, and home automation hubs often ship with default credentials like "admin/admin" or "admin/password." Change them immediately. Use a strong, unique password from your password manager.

Update the Firmware

Devices may have been manufactured months ago. Update the firmware before using them. Check the manufacturer's website or the device's settings for available updates. Enable automatic updates if the option exists.

Review Privacy Settings

Smart speakers listen. Smart TVs track viewing habits. Fitness trackers collect health data. Smart cameras stream video. Review what data each device collects, where it's sent, and what controls you have over it. Disable features you don't need.

Device-Specific Tips

Smart Speakers (Echo, Google Home)

  • Review and delete voice recordings periodically through the companion app
  • Disable purchasing by voice (or set a confirmation code)
  • Mute the microphone when discussing sensitive topics
  • Don't place smart speakers in rooms where you discuss patient or client information

Security Cameras (Ring, Nest, Wyze)

  • Use a unique, strong password (not the same as any other account)
  • Enable two-factor authentication
  • If the camera has cloud storage, review who has access to the footage
  • Position cameras so they don't capture areas where privacy is expected

Tablets and Laptops

  • Enable full disk encryption (BitLocker, FileVault)
  • Set up a screen lock with a strong passcode
  • Install security updates before using
  • If it will be used for work, configure it with your IT policies before mixing personal and business use

Fitness Trackers and Smartwatches

  • Review what health data is shared with third parties
  • Use a strong password for the companion app account
  • Consider whether you want location tracking enabled
  • Be aware that some trackers share aggregate data with insurance companies

For Your Practice Network

If any of these devices end up at your office (and they will, because people bring their new gadgets to work): keep them off your practice network. Smart speakers, personal fitness trackers, and IoT devices should connect to a separate guest network, not the same network as your PMS, servers, and workstations.

Set up your new gifts securely, then enjoy them. Happy holidays from all of us.