Saturday, January 23, 01:21
Home security Does your smart bell open the door to hackers?

Does your smart bell open the door to hackers?

Consumers who bought "smart bells" from online markets such as Amazon Marketplace and eBay, which are identical to Amazon Ring and Google Nest, have put their homes in danger violation.

smart bells

As its experts discovered NCC Group, there are some high-risk security issues with these bells, including two that are rated "critical" and nine that are rated "high-risk".

Among the security issues discovered were weak password policies, lack of data encryption, and excessive collection of personal information. All of this could expose them personal information of users in malicious factors. Equally worrying though, is that some of these defects they could even allow the physical theft of a bell or make it easier to turn off the device.

The Qihoo 360 Smart Video Doorbell for example, which was available on Amazon, was easy to steal, as criminals could simply pull it off the wall with a standard SIM card extraction tool included in all smartphone.

Two other devices tested by Victure and Ctronics, contained a critical vulnerability that could allow cyber criminals to steal a network password. The password could then be used to hack into other smart devices at home.

The Victor Smart Video Doorbell found sending the name Wi-Fi and the password of the client house on servers in China, without encryption. If they are stolen, these data could allow a hacker to access the home WiFi.

Kate Bevan's Which? "Connected devices, such as smart bells, bring potential benefits and convenience to our lives, but also significant risks if they are manufactured and sold without security checks or monitoring."

"We urge the public to buy smart bells from well-known and trusted tech brands and not names they have never heard before, otherwise it is like inviting hackers into their home."

Matt Lewis, director of research at NCC Group, said: "Our findings could cause problems for consumers and are indicative of a broader culture that favors shortcuts to safety in the manufacturing process."

"However, we hope that the long-awaited legislation on the IoT will mark an important milestone in its security. "Until that is achieved, we must continue to work together to highlight the need for basic safety from design authorities and to educate consumers about the risks and what they can do to protect themselves."

safety

What consumers need to do to be safe

They should not buy unknown brands. They should choose smart devices, only from a reliable and well-known brand.

Check reviews. Although the product may have hundreds or even thousands of good reviews, they should always see the negative ones as well.

Change the password. When they are going to use a new device, they have to change the default password to a more secure one.

Install all updates. These software updates provide vital protection against security threats.

Enable two-factor authentication (2FA). If so, two-factor authentication is a great way to get extra security, as logging in requires a unique password that is sent only to the selected device, usually on the owner's smartphone.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement

LIVE NEWS

Intel CPUs Review: Core i7-10700 vs Core i7-10700K!

Over the years, the Intel series of processors (CPUs) introduced the series of overclocking models "K" and more recently the series ...

The DeLorean can return as an electric car

The DMC DeLorean has been out of production for almost 40 years, but it looks like the iconic vehicle will return as an electric car.

Windows RDP servers are used to support DDoS

Cybercrime gangs are abusing Windows Remote Desktop Protocol (RDP) systems to reinforce the unwanted ...

SEPA: He refused to pay a ransom and thousands of files were leaked

Thousands of stolen files of the Scottish Environmental Protection Agency (SEPA) have been published by hackers, after the organization refused to pay the ransom ...

Fines at Valve, Capcom and Zenimax for geo-exclusion of games

Following a European Commission investigation, a group of video game publishers was fined € 7,8 million following allegations of geo-exclusion practices. In...

Bitcoin helps the middle class survive the pandemic

Regulators still imply that Bitcoin is just a tool for criminals, but it seems that for the middle class ...

Lightworks 2021.1 for Linux, Mac and Windows has been released

Lightworks Professional Multi-Platform Video Editing Software received the first major update to Lightworks 2021.1 for Windows, Linux and Mac.

Netflix: Watch the 9 best Anime movies of all time

One of the good things about the pandemic was that many people were introduced to the anime world. And the issue with anime is ...

CHwapi: Windows BitLocker "hit" the Belgian hospital!

The CHwapi hospital in Belgium was attacked by a cyber attack on January 17, with hackers claiming to have encrypted 40 servers and 100 ...

CPU / GPU Lotteries: Newegg sells the few on the market

Hardware shortages are not uncommon, but the pandemic has worsened the situation. The whole planet is closed to ...