IoT devices can become much more secure with simply using standard practices. Default credentials being the main problem.
Implementation of something such as two factor authorization for secure shell remote logins or simply using an algorithm for password generation instead of 1 default password.
Companies that mass produce lower priced IoT devices should still want to safeguard their customers from the growing threat such as today.
Unsecure IoT devices on a blockchain type application would be scary!