Video Doorbells Sold by Major Retailers Are Riddled with Security Flaws

Written by

Geoff Halstead

Published on

March 5, 2024

Reading time

1 min.

Doorbell Camera

The outlook for security and privacy with home and office security cameras continues to be grim.

Recent findings by Consumer Reports underscore this picture, revealing significant security vulnerabilities in numerous brands of video-enabled doorbells. These flaws are so severe that individuals facing threats from stalkers or abusive partners may unknowingly be subjected to surveillance through their smartphones, online services, and connected smart devices. In some instances, attackers could even exploit a device’s serial number to hijack it remotely over the internet from anywhere globally. The vulnerabilities highlighted by Consumer Reports could potentially empower malicious individuals to compromise the video doorbell on a target’s residence, enabling them to monitor the movements of the target and their family members.

Consumer Reports identified these problematic devices under the brand names Eken and Tuck, which seemed to share a manufacturer with at least 10 other devices featuring similar designs. Despite their seemingly obscure nature, these devices are reportedly available on major retail platforms such as Amazon, Walmart, Sears, Shein, and Temu. Alarmingly, Amazon had even endorsed some of these products with its “Amazon’s Choice: Overall Pick” label, even after being informed by Consumer Reports about the security vulnerabilities.

“Big e-commerce platforms like Amazon need to take more responsibility for the harms generated by the products they sell. There is more they could be doing to vet sellers and respond to complaints. Instead, it seems like they’re coasting on their reputation and saddling unknowing consumers with broken products.”

Justin Brookman, director of technology policy for Consumer Reports

A good guideline is to avoid placing any device in or near your home that combines a camera, internet connectivity, and originates from an unfamiliar Chinese manufacturer. However, it is important to understand that:

  1. virtually all security cameras are manufactured in China and most likely have baked-in vulnerabilities or back doors; and
  2. ANY security cameras that it connected to the Internet – regardless of where it is made – is inherently vulnerable to Web-based hacking.

More Reading:

Related posts

AT&T Admits that Data of “Nearly All” Customers Was Breached in 2022

Reading Time: 2 min.

The New York Times reported today that AT&T disclosed a significant data breach affecting nearly all of its customers. The…

Read more

NSA Report Details the Extent and Effectiveness of PRC Exploitation of the Internet

Reading Time: 2 min.

The NSA release this week a comprehensive report with explicit details of the extent of the activity and ‘Tradecraft” of…

Read more

Chrome Browser Revealed to Secretly Spy on PCs

Reading Time: 1 min.

Luca Casonato 🏳️‍🌈 on Twitter / X Developer Luca Casonato posted a series of tweets on July 9. He revealed…

Read more

Video Doorbells Sold by Major Retailers Are Riddled with Security Flaws

The outlook for security and privacy with home and office security cameras continues to be grim. Recent findings by Consumer Reports underscore this picture, revealing significant security vulnerabilities in numerous brands of video-enabled doorbells. These flaws are so severe that individuals facing threats from stalkers or abusive partners may unknowingly…

Reading Time: 1 min.

Doorbell Camera

The outlook for security and privacy with home and office security cameras continues to be grim.

Recent findings by Consumer Reports underscore this picture, revealing significant security vulnerabilities in numerous brands of video-enabled doorbells. These flaws are so severe that individuals facing threats from stalkers or abusive partners may unknowingly be subjected to surveillance through their smartphones, online services, and connected smart devices. In some instances, attackers could even exploit a device’s serial number to hijack it remotely over the internet from anywhere globally. The vulnerabilities highlighted by Consumer Reports could potentially empower malicious individuals to compromise the video doorbell on a target’s residence, enabling them to monitor the movements of the target and their family members.

Consumer Reports identified these problematic devices under the brand names Eken and Tuck, which seemed to share a manufacturer with at least 10 other devices featuring similar designs. Despite their seemingly obscure nature, these devices are reportedly available on major retail platforms such as Amazon, Walmart, Sears, Shein, and Temu. Alarmingly, Amazon had even endorsed some of these products with its “Amazon’s Choice: Overall Pick” label, even after being informed by Consumer Reports about the security vulnerabilities.

“Big e-commerce platforms like Amazon need to take more responsibility for the harms generated by the products they sell. There is more they could be doing to vet sellers and respond to complaints. Instead, it seems like they’re coasting on their reputation and saddling unknowing consumers with broken products.”

Justin Brookman, director of technology policy for Consumer Reports

A good guideline is to avoid placing any device in or near your home that combines a camera, internet connectivity, and originates from an unfamiliar Chinese manufacturer. However, it is important to understand that:

  1. virtually all security cameras are manufactured in China and most likely have baked-in vulnerabilities or back doors; and
  2. ANY security cameras that it connected to the Internet – regardless of where it is made – is inherently vulnerable to Web-based hacking.

More Reading:

If you liked this post, Share it on: