Vulnerability in Children

Vulnerability in Children's Smart Watch Could Reveal Location

Some smart watches geared towards children have series security flaws.

Researchers have found that a smart watch marketed towards children has several gaping security holes that could allow a hacker to eavesdrop and see the exact location of the wearer.

The many glaring security flaws were discovered by security firm, Mnemonic, which analyzed the Gator, Tinitell, Viksfjord/SeTracker and Xplora smartwatches. The devices are marketed as a way for parents to keep tabs on and communicate with their children via apps, but some have very serious vulnerabilies that could allow a stranger to take advantage of a smart device on a child's wrist.

"Three of the four watches that were tested were found to contain significant security flaws," Mnemonic wrote in its report. "The flaws are not technically difficult to exploit, and in two cases, allow a third party to surreptitiously take control over the watch."

The Gator 2, Viksfjord/SeTracker and Xplora devices were all found to have multiple serious and practical attacks. In the Gator 2, for example, a hacker could completely hijack the device, allowing the attacker to track its current location (and hence, the location of its child wearer) and location history. It also gives the hacker the ability to send voice messages to the watch and edit the contact phone numbers it stores.

The Viksfjord/SeTracker, according to the report, can be used as a "remotely controllable listening device," or allow the hacker to communicate with the child.

And the researchers were also able to access sensitive data from other Xplora customers, including locations, names, and phone numbers — suggesting it is not being stored properly.

Meanwhile, none of the four devices give users the option to delete their accounts or have location data delete automatically after a set period of time. Only the Tinitell promises to implement reasonable security standards, Mnemonic said.

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

New Products

  • HD2055 Modular Barricade

    Delta Scientific’s electric HD2055 modular shallow foundation barricade is tested to ASTM M50/P1 with negative penetration from the vehicle upon impact. With a shallow foundation of only 24 inches, the HD2055 can be installed without worrying about buried power lines and other below grade obstructions. The modular make-up of the barrier also allows you to cover wider roadways by adding additional modules to the system. The HD2055 boasts an Emergency Fast Operation of 1.5 seconds giving the guard ample time to deploy under a high threat situation.

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area.

  • Automatic Systems V07

    Automatic Systems V07

    Automatic Systems, an industry-leading manufacturer of pedestrian and vehicle secure entrance control access systems, is pleased to announce the release of its groundbreaking V07 software. The V07 software update is designed specifically to address cybersecurity concerns and will ensure the integrity and confidentiality of Automatic Systems applications. With the new V07 software, updates will be delivered by means of an encrypted file.