Consumer-oriented connected devices are flooding the market, and many of the devices lack basic security protections. The issue has serious consequences for device manufacturers, consumers, and the connect infrastructure. Both the Federal Trade Commission and private attorneys have sued device manufacturers for failing to build reasonable security into their products. In addition, networks of compromised consumer devices DDoS’d significant Internet services. This presentation looks at common security issues appearing in connected devices and considers legal, policy, and education initiatives aimed at helping improve the issue.