In a public service announcement published Thursday, the bureau said malicious cyber actors can use Internet of Things devices that lack security features to attack other systems, steal personal data or obstruct physical safety efforts.
Office equipment, security alarms, medical devices, thermostats, wearables, lighting modules, smart appliances, wireless controllers and fuel monitoring systems are some examples of IoT devices listed in the notice.
The bureau advised users to isolate IoT platforms on secured computer networks and disable the networking protocol known as Universal Plug and Play on routers.
Consumers should only purchase web-enabled technologies from vendors with track records of securing products and replace manufacture-provided default passwords with unique ones, the FBI added.