Technology: Amazon Ring doorbells could let hackers hijack your Wi-Fi - Hacking a video game is only a matter of hours - PressFrom - US
  •   
  •   
  •   

Technology Amazon Ring doorbells could let hackers hijack your Wi-Fi

15:20  08 november  2019
15:20  08 november  2019 Source:   techradar.com

Buy a Ring Video Doorbell or Nest Hello, and get a free smart display at Best Buy

  Buy a Ring Video Doorbell or Nest Hello, and get a free smart display at Best Buy Pairing a smart display with a smart doorbell is a good idea. And getting a smart display for free when you buy a smart doorbell is even better. © Provided by Cable News Network, Inc.Best Buy is offering just that, in three variations. When you buy a Nest Hello doorbell ($229.99; bestbuy.com) you'll get a free Google Nest Hub. Purchasing the Ring Video Doorbell 2 ($199.99; bestbuy.com) gets you an Echo Show 5. Or you can get a free Echo Show 5 when you purchase the $249.99 Ring Video Doorbell Pro. While you won't save on the doorbells themselves, you get a smart display for free.

Wi - Fi passwords broadcast to hackers by Ring products. Shares. (Image credit: Amazon ). Bitdefender found that hackers could also potentially trigger the reconfiguration of the Ring Video Doorbell Pro by overloading it with a stream of deauthentication messages, making the device get

Bitdefender said the Amazon -owned doorbell was sending owners’ Wi - Fi passwords in cleartext as the doorbell joins the local network, allowing nearby hackers to Security researchers have discovered a vulnerability in Ring doorbells that exposed the passwords for the Wi - Fi networks to which they were

New research has found that Amazon Ring smart doorbells may have a number of signficant security flaws.

a close up of a door: null© Provided by Future Publishing Ltd. null

Findings from Bitdefender discovered that the products were leaking the password for the Wi-Fi networks of their users, making the details available for any third parties.

The issue appears to affect the Ring Video Doorbell Pro device, which costs around £220/$225, with thousands of users potentially at risk of having their home networks compromised.

  • Best home security systems of 2019: the best in smart home security
  • Rogue Trend Micro employee exposes customer data
  • The best cheap smart home devices and gadget deals for Black Friday 2019

Unsecure

Bitdefender's research found that when a Ring doorbell registered with a user's Wi-Fi network, it was sending the password needed to join in cleartext. This could have allowed hackers to intercept the password, and then use it to infiltrate the network for malicious purposes.

Amazon announces new 'Home Mode' privacy feature for Ring doorbells

  Amazon announces new 'Home Mode' privacy feature for Ring doorbells If toggled, the video doorbells won't record when owners are home.The feature, which Amazon's hardware chief David Limp announced at the company's gadgets-focused event in Seattle, would prevent Ring doorbell cameras from recording audio and video footage when residents are home. It will be released in the fall, Limp said.

Amazon 's Ring video door bells capture what is going on at the front door. Ring doorbells are connected over a smartphone app and to the home's Wi - Fi , allowing users to An attacker in range of the user's home could hijack the message and use the password to access the home's Wi - Fi network.

"Attackers can trigger the reconfiguration of the Ring Video Doorbell Pro. One way to do this is to continuously send deauthentication packets, so that the Bitdefender discovered this vulnerability in Ring Video Doorbell Pro devices in June this year and responsibly reported it to Amazon , but got no

This data was also being sent over an unencrypted connection, putting the user network at further risk.

“When first configuring the device, the smartphone app must send the wireless network credentials. This takes place in an unsecure manner, through an unprotected access point,” Bitdefender said in a blog post detailing the findings. “Once this network is up, the app connects to it automatically, queries the device, then sends the credentials to the local network.”

Bitdefender found that hackers could also potentially trigger the reconfiguration of the Ring Video Doorbell Pro by overloading it with a stream of deauthentication messages, making the device get dropped from its wireless network. When this happens, the mobile app loses connectivity and asks the user to reconfigure the device, giving hackers another way in.

Bitdefender says that all Ring Doorbell Pro cameras have received a security update that fixes the issues its team found, and that users should download and install this as soon as possible.

  • The best antivirus software of 2019

Ring doorbells had vulnerability leaking Wi-Fi login info, researchers found .
Amazon's video doorbell sees who's at your doorsteps. For months, anyone on its open network could have seen your username and password.Ring video doorbells had a vulnerability that allowed hackers to view your Wi-Fi password.

—   Share news in the SOC. Networks

Topical videos:

usr: 1
This is interesting!