Here is an article where you can read more: https://foundation.mozilla.org/en/blog/mozilla-publishes-ring-doorbell-vulnerability-following-amazons-apathy/

Quoted a portion:

(SAN FRANCISCO, CA | TUESDAY, JUNE 6, 2023) – Today, Mozilla is publicizing a security vulnerability in Amazon’s Ring Wireless Video Doorbell. Mozilla shared the vulnerability with Amazon over 90 days ago, but Amazon has yet to address the issue. Now, per industry standards, Mozilla is sharing its findings publicly to alert Ring Doorbell users and to further pressure Amazon to take action.

Following a penetration test of the Ring Doorbell conducted in October-November 2022, Mozilla and collaborator Cure53 determined that the device is vulnerable to Wi-Fi deauthentication attacks. Bad actors can leverage these weaknesses to disconnect the device from the internet using easily-accessible tools.

As a result, those bad actors could take the doorbell offline and then have their activities go unrecorded — undermining the product’s core purpose. Even after the doorbell is reconnected to the internet, a user will receive no alert about the attack.

Mozilla’s disclosure comes just days after Ring’s $5.8 million settlement with the Federal Trade Commission (FTC) over other serious privacy and security issues. The FTC found that “Ring’s poor privacy and lax security let employees spy on customers through their cameras, including those in their bedrooms or bathrooms, and made customers’ videos, including videos of kids, vulnerable to online attackers.”

  • phoneymouse@lemmy.world
    link
    fedilink
    English
    arrow-up
    45
    arrow-down
    1
    ·
    1 year ago

    Sign a petition? How about not use Amazon smart home products.

    It’s like signing a petition to ask McDonald’s to use real ingredients in their food. Why bother, don’t eat it.

    I have a hundred other real problems.

    • Otter@lemmy.caOP
      link
      fedilink
      English
      arrow-up
      10
      arrow-down
      1
      ·
      edit-2
      1 year ago

      I do both

      There are a lot of things that don’t affect me directly, but I might vote/sign a petition for it. Even if it doesn’t actually work out in my favor, more people see it and learn about the issue.

      If there’s a petition going around or news about the number of people that signed, and someone was already on the fence, it might act as the straw that gets people to dump Amazon smart home products.


      There’s also the case where these devices are collecting data on you even if you don’t own one. What if you go to a friend’s place, or a friend is talking about something you’re working on, or even if you walk by a house that has a smart doorbell?

      Not saying everyone NEEDS to do this, because you need to have the time and mental energy to deal with it. Just saying that there’s still value in doing so even if you don’t use the products yourself.