Vulnerability in Children's Smart Watch Could Reveal Location -- Security Today

Vulnerability in Children's Smart Watch Could Reveal Location

Some smart watches geared towards children have series security flaws.

By Sydny Shepard
Oct 20, 2017

Researchers have found that a smart watch marketed towards children has several gaping security holes that could allow a hacker to eavesdrop and see the exact location of the wearer.

The many glaring security flaws were discovered by security firm, Mnemonic, which analyzed the Gator, Tinitell, Viksfjord/SeTracker and Xplora smartwatches. The devices are marketed as a way for parents to keep tabs on and communicate with their children via apps, but some have very serious vulnerabilies that could allow a stranger to take advantage of a smart device on a child's wrist.

"Three of the four watches that were tested were found to contain significant security flaws," Mnemonic wrote in its report. "The flaws are not technically difficult to exploit, and in two cases, allow a third party to surreptitiously take control over the watch."

The Gator 2, Viksfjord/SeTracker and Xplora devices were all found to have multiple serious and practical attacks. In the Gator 2, for example, a hacker could completely hijack the device, allowing the attacker to track its current location (and hence, the location of its child wearer) and location history. It also gives the hacker the ability to send voice messages to the watch and edit the contact phone numbers it stores.

The Viksfjord/SeTracker, according to the report, can be used as a "remotely controllable listening device," or allow the hacker to communicate with the child.

And the researchers were also able to access sensitive data from other Xplora customers, including locations, names, and phone numbers — suggesting it is not being stored properly.

Meanwhile, none of the four devices give users the option to delete their accounts or have location data delete automatically after a set period of time. Only the Tinitell promises to implement reasonable security standards, Mnemonic said.

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

Healthcare Workers Demand Better Safety Measures

New research shows 68% of healthcare staff faced violence last year, with many prioritizing security features over continuous location tracking. Read Now
- Facility Security
- Hospital
- Physical Security
Banks Modernize Security with ProdataKey's Scalable Cloud Access Control

Regional financial institution unifies security across dozens of branches using remote management and automated compliance reporting tools. Read Now
- Access Control
- Physical Security
- Facility Security
Americans Overconfident Despite Rising Cyber Risks

New survey data reveals a significant gap between perceived digital safety and the actual security habits of U.S. consumers. Read Now
- Cybersecurity
- Data Security
- Risk Management
Hard Rock Stadium Modernizes Security with Cloud Migration

The Miami Dolphins partnered with Castaway Technology and Security to deploy a unified Verkada platform across the 65,000-seat venue. Read Now
Effective Governance is Key to Enterprise Cloud Security

Large organizations are prioritizing hybrid models and operational oversight to ensure long-term resilience and regulatory compliance. Read Now
- Physical Security
- Cybersecurity
- Risk Management

Artificial Intelligence

Security Today eNews

Sign up today for essential industry news and product information that can help you stay afloat in the fast-paced world of security.

Email Address*Country*

Please type the letters/numbers you see above.

Webinars

Whitepapers

New Products

HD2055 Modular Barricade

Delta Scientific’s electric HD2055 modular shallow foundation barricade is tested to ASTM M50/P1 with negative penetration from the vehicle upon impact. With a shallow foundation of only 24 inches, the HD2055 can be installed without worrying about buried power lines and other below grade obstructions. The modular make-up of the barrier also allows you to cover wider roadways by adding additional modules to the system. The HD2055 boasts an Emergency Fast Operation of 1.5 seconds giving the guard ample time to deploy under a high threat situation.
ResponderLink

Shooter Detection Systems (SDS), an Alarm.com company and a global leader in gunshot detection solutions, has introduced ResponderLink, a groundbreaking new 911 notification service for gunshot events. ResponderLink completes the circle from detection to 911 notification to first responder awareness, giving law enforcement enhanced situational intelligence they urgently need to save lives. Integrating SDS’s proven gunshot detection system with Noonlight’s SendPolice platform, ResponderLink is the first solution to automatically deliver real-time gunshot detection data to 911 call centers and first responders. When shots are detected, the 911 dispatching center, also known as the Public Safety Answering Point or PSAP, is contacted based on the gunfire location, enabling faster initiation of life-saving emergency protocols.
Automatic Systems V07

Automatic Systems, an industry-leading manufacturer of pedestrian and vehicle secure entrance control access systems, is pleased to announce the release of its groundbreaking V07 software. The V07 software update is designed specifically to address cybersecurity concerns and will ensure the integrity and confidentiality of Automatic Systems applications. With the new V07 software, updates will be delivered by means of an encrypted file.