Earlier this year I wrote (http://www.cybersecurityinsights.net/post/102deq5/whats-at-the-back-of-your-fridge) about how I imagined hackers using IoT devices to mount DDOS attacks on a massive scale. This has become a reality and changes the rules of the game. It is unlikely that the majority of IoT buyers will understand what a DDOS attack is, never mind how to defend against one. Does the responsibility lie with the IoT manufacturers or ISPs? Either way, there is a real cost to such large scale DDOS attacks, as was seen with the attack on Brian Krebs' website.