There may be bad news if you purchased one of Amazon’s “Overall Picks” for video doorbells in recent months. New tests from Consumer Reports find that popular doorbell cameras sold under names including Eken and Tuck are rife with security flaws that make it dead simple for anyone to watch your camera footage.

Consumer Reports looked at ten seemingly identical video doorbells sold under various names including Eken and Tuck that are widely available on websites including Amazon, Walmart, Shein, and Temu. All of them are manufactured by Eken Group Ltd., and all use the same companion app called Aiwit. Apparently, hijacking these devices is as easy as downloading Aiwit and putting the doorbell in pairing mode. This allows an attacker to take over the device, view footage, and lock out the owner.

In fact, the tests found you can gain remote access to the doorbells without a password. All you need to see photos from the video feeds is one of the doorbells’ serial numbers.

  • @j4k3@lemmy.world
    link
    fedilink
    English
    103 months ago

    “Amazon Picks” = a pointer to the highest profit margin product in the search results.

    What is the difference really. If a dozen kids hack a doorbell, that is still less than the number of eyes watching and data mining with all of the other options like Nest. Data mining is hacking. Keeping or selling information used to influence a person in any way, is owning a part of their person.

    Pretty much all video door bells are hacked garbage albeit pirates or privateers.