Mar 01, 2024 10:56:00

It turns out that the smart doorbell that can be purchased on Amazon has a fatal security flaw that allows easy hacking

Many smart intercoms are sold on online shopping sites such as Amazon, which allow you to respond to visitors using your smartphone, and which are equipped with a recording function and can be used as security cameras. However, some smart intercoms have security flaws, and

Consumer Reports , a monthly magazine published by the consumer organization Consumers Union, reports that hackers can attack some smart intercoms with the push of a button. It points out that there is a vulnerability that allows the camera to be hijacked.

Video Doorbells Sold By Big Retailers Have Major Security Flaws - Consumer Reports
https://www.consumerreports.org/home-garden/home-security-cameras/video-doorbells-sold-by-major-retailers-have-security-flaws-a2579288796/

Popular video doorbells can be easily hijacked, researchers find | TechCrunch

https://techcrunch.com/2024/02/29/popular-video-doorbells-eken-tuck-hijacked-researchers/

$30 doorbell cameras can be easily hijacked, says Consumer Reports | Ars Technica
https://arstechnica.com/gadgets/2024/02/report-cheap-doorbell-cameras-leak-still-images-and-allow-for-easy-takeover/

The smart intercom reported by Consumer Reports is manufactured by EKEN , a company based in Shenzhen, China. You can purchase it for about $30 (about 4,500 yen) at online shopping sites such as Amazon, Walmart , and Temu .

According to Consumer Reports, the product uses an app called ``

Aiwit '' when setting up the product. It is said that it has a security flaw that it is possible to be hijacked.

As a specific method, Consumer Reports says, ``A malicious user could create their own account on the app, point the QR code displayed on the app at the intercom camera, and scan it, then use the intercom as their own account. 'You will be able to add and control the device.'

In addition, Consumer Reports says, ``Public IP addresses and Wi-Fi SSIDs are transmitted over the Internet without encryption,'' and ``Once the camera's serial number is known, still images can be accessed from the video feed and other information.'' It points out the vulnerability of 'being exposed.' It has also been pointed out that EKEN's smart intercom has not been

certified by the US Federal Communications Commission (FCC) .

'EKEN's smart intercom has serious security and privacy issues and is available on major online marketplaces like Amazon and Walmart,' said Justin Brookman, director of technology policy at Consumer Reports. Both manufacturers and platforms selling these products have a responsibility to ensure that these products do not put consumers at risk.'

Consumer Reports has issued a warning to various platforms selling this smart intercom. Temu spokesperson Tori Schubert said, 'At Temu, we conducted a thorough review to ensure that these products comply with FCC certification and other relevant standards. , we have removed all related products from the platform.'

In addition, Walmart spokesperson John Forrest told overseas media TechCrunch, ``Walmart has stopped selling EKEN's smart intercom.'' Meanwhile, Consumer Reports noted that 'similar smart intercoms with a similar appearance are still available at Walmart.'

Furthermore, EKEN did not leave any comments regarding the points raised by Consumer Reports.