Smart Doorbell ‘Ring’ was found to be susceptible to hacking such that the home’s WiFi password could be exposed, says a team of researchers.
In a world where technology is becoming more of an addiction than a real need with each passing day, we are bent on connecting with our devices to an increasingly greater extent. It is no wonder that humans do not only want smart phones but also smart homes. The high demand thereof has fuelled the market of Internet of Things (IoT) to bring household objects (‘things’) closer to their owners technology-wise via the Internet.
One such ‘thing’ that allows users to settle themselves comfortably in their houses is the Smart Doorbell. Connected to the Internet, the doorbell allows people to see who is ringing it without having to check at the door itself. Thanks to a smartphone app, one is able to view who is at one’s threshold when the bell is pressed. Even more incredibly, the person can talk to his guest without having to open the door.
But, there is a loophole in this seemingly perfect household device: someone could hack in to find the home’s WiFi password.
Contemporary societies are practically obsessed with WiFi passwords. After all, connecting with the whole wide world is thus just a combination of words away – a password that is supposed to protect your Internet connection from encroachers. But, that’s the thing with ‘Smart things’: they can be easily hacked. Previous studies have shown that Smart products (from cars to kettles) are susceptible to such actions. Now, security researchers from Pen Test Partners from the UK have spotted an important security hole in an IoT Smart Doorbell called Ring: the password of the home network can thus be revealed to malicious users.
Ring has some additional features that make it even ‘smarter’. For instance, owners can make use of ‘smart door locks’ that will allow their guests to enter their homes even if they themselves are away. Given its advanced nature, the researchers were surprised to find the discrepancy. The doorbell can actually just be detached from the house with a simple tool and pressing the setup button would make its wireless component accessible (in Access Point (AP) mode), as explained by David Lodge from Pen Test Partners. The whole configuration file of the wireless module (including the WiFi password) will be exposed in the web browser.
Thankfully, though, the researchers informed the manufacturers of Ring of the security hole and it was fixed two weeks later.