A major flaw in the Ring doorbell camera may have compromised the security of its customers. In a shocking report by The Information, a flaw in Rings software can allow for people who previously had access to stay logged in to a system even after the password has been changed in a shocking new Ring doorbell hack. Although it may only seem like a minor inconvenience; a small error in a security system can have major repercussions.
Real-life Ring Doorbell Hack
Miami resident, Jesus Echezarreta, revealed that he was secretly being spied on by his ex-boyfriend through Ring, as reported by The Information. Although he had changed his login information, Echezarreta complained to Ring that something weird had been occurring. After reviewing his account, Ring was able to determine that someone had been continuously ringing and downloading video from his doorbell since August, when Echezarreta broke up with his boyfriend. Echezarreta was eventually able to determine who it was when his ex mentioned that he should walk his dog more. He confessed and apologized to Echezarreta and Ring sent him a new doorbell, assuming he still wants to use the product.
This news is shocking for not only Ring but its parent company, Amazon, as well. In February, Amazon purchased Ring for $1 billion and has big plans to use Ring to break into the home security market. They have mentioned plans to integrate Ring into their Amazon Key service, which would allow for delivery people to enter a customer’s home. While this service has already been hotly contested, news of Ring’s doorbell camera being effortlessly accessed by unwanted individuals will not help ease customer’s hesitation. This information comes out just after the announcement of Ring’s Neighbors app that is setup to be a digital neighborhood watch.
Ring responded to the concerns by assuring customers that the app was updated in January and would kick off unwanted users when the password is changed. Ring CEO, Jamie Siminoff, mentioned that it should take no more than one hour to kick someone off an account after the password change. It couldn’t happen immediately as that would slow down the app. The Information reporter who was covering the story was able to access his account through the app several hours after changing his password however. A security expert warned the reporter of the severe flaws in Ring’s system.
Jay Kaplan, CEO of security firm Synack, commented, “It’s certainly not a security best practice to implement the authentication the way they have.”
In response to the allegations, Ring encouraged their customers to use the Shared Users feature in the device instead of giving out account information. Rather than addressing the major security flaw at hand, Ring suggested that “owners maintain control over who has access to their devices.”
Ring Doorbell Hack 2019: The Security Breach Continues
Ring doorbell hacks in 2019 are just as troubling as their other incidents from the past. Recently, hackers have been able to breach into Ring’s security cameras as well.
Such was the case with the LeMay’s. This Mississippi family reported that a man hacked into their Ring home security cameras and made racial slurs at their daughter. The hacker also played frightening music from a popular scary movie over the two-way voice speaker. The hacking took place on a camera that was recently installed in the young children’s bedroom.
Ring is responding to what happened to the LeMay’s by insisting this incident is not the result of unauthorized intrusion or compromise of Ring’s systems and/or network. Instead, the company is pointing its fingers at the “malicious actors” who “have obtained some Ring user’s account credential from a separate, external, non-Ring service and reused them to log into some Ring account.” Ring goes on to say that reusing the same username and password on multiple services makes it possible for bad actors to gain access to many accounts.
How To Protect Your Family From Ring Doorbell Hack
Homeowners looking to avoid falling victim to the next round of hacks should follow the security measures Ring suggests below.
Use Strong Passwords
Yes, it’s always a wise decision to use a unique password for each account you make–from email to Instagram. You’ll need to take password picking a step further when it comes to your Ring. You can fend off hackers by reviewing whether the password or email address you have associated with Ring have recently become exposed in a security breach.
Turn On Two-Factor Authentication
Two-factor authentication provides users with an extra layer of protection. Ring customers can get extra security by having a password sent to the mobile number you provide. For authentication to be complete, you will need to enter the six-digit code that was sent to your phone.
No home security company should ever put a person in jeopardy of losing the security of their home. With how great technology has been for the further advancement of home security, it can also create major flaws. In this case, the Ring doorbell hack exposed a security company missing a major security protocol. If you are someone interested in home security or finding a better home security option, contact Protect America today for an obligation-free quote. A professionally monitored system, with an installation process that’s as easy as peal-and-stick, Protect America has been an industry leader for 25 years. Let the professionals ensure your security so you can ensure peace of mind.