Consumer Reports reveals that video doorbells manufactured by Chinese company Eken, sold under various brands, have significant security vulnerabilities, potentially compromising users’ safety and privacy.
These doorbell cameras, retailing for approximately $30 each, are widely available on popular platforms such as Walmart, Sears, and Amazon, with some listings even endorsed with the Amazon Choice badge.
Brand Variations and Global Distribution
Sold under brands like Eken, Tuck, Fishbot, Rakeblue, Andoe, Gemee, and Luckwolf, these devices are connected to users’ phones through the Aiwit app. They are also sold globally on Shein, Temu, Alibaba, and Lazada platforms.
Unencrypted Connections and Easy Exploitation:
Consumer Reports investigation reveals that the devices lack encryption, exposing users’ home IP addresses and WiFi network names, posing a potential entry point for malicious actors. Physical access to the doorbell allows hijackers to take control via the Aiwit app, potentially compromising security further.
Even if the original owner regains control, hijackers can still access time-stamped images if they possess the doorbell’s serial number, which can be easily shared or posted online.
Misleading Expectations and Potential Consequences:
Despite being sold in large numbers on Amazon, the devices fail to deliver on security promises, potentially endangering individuals’ safety and privacy, particularly those vulnerable to stalking or domestic violence.
Consumer Reports advises users to disconnect the doorbells from WiFi and physically remove them from their homes to mitigate risks. The publication has notified online marketplaces about the findings, urging them to remove the listings. While some platforms like Temu are investigating the issue, others like Amazon, Sears, and Shein have reportedly not responded.
Protecting User Safety and Privacy:
As concerns over the security of these video doorbells mount, proactive measures are essential to safeguard users’ well-being and privacy from potential threats posed by these devices.