A lot of people in infosec have talked about how IoT is a flaming pile of crap, myself included. My personal belief is that things are only going to improve with either standards that force manufacturers to be compliant or labelling schemes that allow consumers to choose secure products. But how’s that all going?
I’ve been an embedded developer for over 20 years. I haven’t bothered learning web development because I still think the internet is a passing fad, but I’ve been forced to think about security after the industry started adding networking to products.