Submission + - Consumer Groups Push New Law To Reign In Zombie Devices (substack.com)
chicksdaddy writes: You bought a smart refrigerator with cool new AI features (https://www.ces.tech/ces-innovation-awards/2025/4-door-refrigerator-with-ai-home-and-ai-vision-inside-20/). The hardware that keeps your food from spoiling has a useful life that is measured in decades. But 6 months after you buy it, the manufacturer declares that it is ending support for the fridge's software and shutting down the cloud services that power its smart features — a big reason you purchased the device. What can you do? Currently, not a thing. But that may soon change. A group of consumer advocacy groups on Thursday introduced model legislation to address the growing epidemic of “zombie” Internet of Things (IoT) devices that have had software support cut off by their manufacturer, Fight To Repair News reports https://open.substack.com/pub/...
The Connected Consumer Product End of Life Disclosure Act (https://advocacy.consumerreports.org/press_release/consumer-reports-us-pirg-and-secure-resilient-future-foundation-propose-connected-consumer-products-end-of-life-disclosure-act-to-address-iot-security-risks/) is a collaboration between Consumer Reports (https://consumerreports.org/), US PIRG (https://pirg.org/), SRFF, the Secure Resilient Future Foundation (https://secure-resilient.org/) and the Center for Democracy and Technology (https://cdt.org/). It requires manufacturers of connected consumer products to disclose for how long they will provide technical support, security updates, or bug fixes for the software and hardware that are necessary for the product to operate securely.
“Consumers deserve to know how long their connected devices will be supported,” said Justin Brookman, director of technology policy for Consumer Reports in a statement. “Currently, it’s nearly impossible for most people to figure out if their devices are still receiving critical updates. This lack of transparency leaves consumers vulnerable and creates significant security risks.”
The Connected Consumer Product End of Life Disclosure Act (https://advocacy.consumerreports.org/press_release/consumer-reports-us-pirg-and-secure-resilient-future-foundation-propose-connected-consumer-products-end-of-life-disclosure-act-to-address-iot-security-risks/) is a collaboration between Consumer Reports (https://consumerreports.org/), US PIRG (https://pirg.org/), SRFF, the Secure Resilient Future Foundation (https://secure-resilient.org/) and the Center for Democracy and Technology (https://cdt.org/). It requires manufacturers of connected consumer products to disclose for how long they will provide technical support, security updates, or bug fixes for the software and hardware that are necessary for the product to operate securely.
“Consumers deserve to know how long their connected devices will be supported,” said Justin Brookman, director of technology policy for Consumer Reports in a statement. “Currently, it’s nearly impossible for most people to figure out if their devices are still receiving critical updates. This lack of transparency leaves consumers vulnerable and creates significant security risks.”