Experts say the inexpensive versions of smart doorbells sold to provide security allow hackers and thieves to easily enter homes.
A study of 11 smart bells available in the market found that smart bells, which generally include built-in cameras, can easily be turned off, stolen or compromised by hackers, including those that mimic flagship models like Amazon’s Ring or Google Nest.
Cybersecurity experts at NCC Group discovered high-risk security issues in these smart bells. These flaws included weak password policies, lack of data encryption, and excessive collection of customer private information.
The Qihoo 360 Smart Video Doorbell, available for sale on Amazon, was easy to hack during the trials. It can simply be detached from the wall using the standard sim eject tool included with all smartphones, and can then be reset and sold.
Experts have also found a serious security breach in two devices made by Victure and Ctronics that could allow criminals to steal a network password and use it to infiltrate smart devices in the home.
Although Amazon ranked Victure Smart Video Doorbell as a bestseller with a 4.3 out of 5 rating from more than 1,000 reviews, this device can send customers’ home Wi-Fi network name and passwords to servers in China.
It was also found that a device listed on the eBay site suffers from a defect that makes it not connected to the Internet, which enables criminals to stop recording it while storming the house, according to the British newspaper The Daily Mail.
“Smart door locks bring potential benefits, but they also carry significant risks if poorly manufactured and sold without any safety checks or oversight,” said Kate Bevan of Which company.
“We require all products to comply with applicable laws and regulations, and we have developed industry-leading tools to prevent the inclusion of unsafe or incompatible products,” Amazon commented on the study findings.