Tuesday, July 2, 2024 03:28 PM
Eken Group Addresses Security Flaws in Video Doorbells
- Serious security vulnerabilities found in Eken Group's video doorbells
- Unauthorized access to video feed due to lack of authentication
- Firmware update issued to mitigate security risks
Image Credits: gnnhdConsumer Reports uncovers security flaws in Eken Group's video doorbells, prompting swift action and firmware update to address vulnerabilities. FCC concerns raised, leading to removal from online platforms.
A recent report by Consumer Reports has shed light on serious security vulnerabilities found in video doorbells manufactured by Eken Group. These vulnerabilities could potentially allow unauthorized individuals to take control of the device, posing a significant risk to users' privacy and security.
The affected video doorbells, which were sold under various brand names including Eken, Fishbot, Rakeblue, and Tuck, all utilized the Aiwit smartphone app. Consumer Reports discovered that these doorbells could be easily manipulated by malicious actors, who could pair the device with their own smartphones and access the video feed without any authentication.
Furthermore, the doorbells did not encrypt users' home IP addresses or Wi-Fi networks, leaving them vulnerable to exploitation by cybercriminals. Consumer Reports' findings prompted Eken Group to issue a firmware update to address these security flaws.
Following the release of the firmware update, Consumer Reports confirmed that the vulnerabilities had been successfully mitigated. However, the Federal Communications Commission (FCC) raised concerns about the lack of FCC ID labels on the doorbells, which are required by law.
As a result of Consumer Reports' investigation, several online retailers, including Amazon, Shein, Temu, and Walmart, have been urged to provide more information on their product vetting processes. Eken's video doorbells, which were previously popular choices on Amazon, have since been removed from many online platforms.
Owners of Eken-produced video doorbells are advised to ensure that their firmware is up to date. By checking the firmware version on the Aiwit app, users can verify that their device is running the latest software version (2.4.1 or higher).
In conclusion, the swift action taken by Eken Group to address the security vulnerabilities in their video doorbells highlights the importance of rigorous product testing and consumer advocacy. As technology continues to evolve, ensuring the security and privacy of connected devices remains a critical priority for both manufacturers and consumers.
