ring doorbell camera

Hackers Have Developed Software To Break Into Ring Security Camera Accounts, And It’s Working

A Mississippi family had their Ring account hacked, allowing a man to speak to their eight-year-old daughter through the speaker.

After a Mississippi family reported that a hacker was able to gain access to their Ring security camera, VICE News discovered that hackers have already created “dedicated software” for breaking into the devices.

Ashley LeMay, a parent living near Memphis, Tenn., told local news outlet WMC5 that she installed a Ring camera in a bedroom to keep an eye on their three young daughters. She and her husband could use Ring’s mobile app to see what was happening with their kids and use a speaker to talk through the camera.

But within four days, a hacker was able to break into their camera and view the children in their room. LeMay’s eight-year-old daughter noticed loud music blaring from their room and went to check it out. Video captured by the camera and shared with WMC5 shows the child asking “Who is that?” as shears banging coming from the Ring speaker.

 

 

A man’s voice replies: “I’m your best friend! I’m Santa Claus!” As the girl calls for her mom, the voice asks the girl: “Don’t you want to be my best friend?”

The hacker encouraged LeMay’s daughter to engage in “destructive behavior,” the news outlet said, before the girl’s father came into the room.

LeMay said that she had not implemented two-factor authentication for her Ring account, which would have added another layer of security protection. The family has also changed their WiFi settings so that their router is no longer visible to the public. She has since disconnected the camera and is working with Ring, which is owned by Amazon, to investigate what happened.

In the news report, LeMay also said she suspected that the hacker was someone who knew the family or someone who was close by and able to access their WiFi network.

The chilling video prompted VICE’s Motherboard to search crime forums for posts related to hacking Ring accounts. One thread on a hacking forum provided software, called a config file, to help other hackers quickly search through usernames, email addresses and passwords and attempt to use them to log into accounts.

Other threads offered to sell the software for low prices, noting a higher demand for the config since it might allow criminals to break into homes when families are not home or spy on the people inside.

The Motherboard report also notes that Ring does not currently require users to set up two-factor authentication, making it easier for hackers to find and take over accounts that have less protection.

A Ring spokesperson said in a statement that they are taking the issue of device security seriously.

“While we are still investigating this issue and are taking appropriate steps to protect our devices based on our investigation, we are able to confirm this incident is in no way related to a breach or compromise of Ring’s security,” the spokesperson said.

The statement added: “As a precaution, we highly and openly encourage all Ring users to enable two-factor authentication on their Ring account, add Shared Users (instead of sharing login credentials), use strong passwords, and regularly change their passwords.”

About the Author

Haley Samsel is an Associate Content Editor for the Infrastructure Solutions Group at 1105 Media.

Featured

  • Enhancing Security and Business Intelligence

    From border security to parking lots, ALPR has gained traction across multiple use cases as the technology becomes more accurate and affordable than ever. I spoke with Jason Cook, business development director at Vaxtor, a leader in ALPR AI-based analytics, and Rui Barbosa, category manager, Surveillance Products at i-PRO, a maker of AI-enabled security cameras, to delve into the latest advancements and applications of ALPR technology. Automated License Plate Recognition (ALPR) has transformed significantly over the years, evolving from a niche technology into a powerful tool for a wide range of applications, particularly in border security. Read Now

  • Leveraging Smart Sensors

    The integration of smart sensors with data-driven video technology provides schools with a comprehensive solution to enhance safety and security. This combination offers advanced capabilities such as environmental monitoring, audio analytics, vape detection and unified data management, empowering schools to create a secure and healthy learning environment for students and staff. Read Now

  • Unlocking the End-user Perception

    An observation as a creator of identity verification solutions is that while industry leaders are often excited by the opportunity to leverage biometrics, there are often concerns raised about the end-user mindset during the conversation. Primarily, what are end-users’ expectations of biometric technology? What concerns might they have about its usage to authenticate and protect their access? Read Now

  • 4 Killed, 9 Injured at Georgia High School Shooting

    Four people were killed and nine were hospitalized after a shooting at Apalachee High School in Winder, Georgia on Wednesday. That’s according to CNN. Read Now

Featured Cybersecurity

Webinars

New Products

  • Camden CV-7600 High Security Card Readers

    Camden CV-7600 High Security Card Readers

    Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure. 3

  • Camden CM-221 Series Switches

    Camden CM-221 Series Switches

    Camden Door Controls is pleased to announce that, in response to soaring customer demand, it has expanded its range of ValueWave™ no-touch switches to include a narrow (slimline) version with manual override. This override button is designed to provide additional assurance that the request to exit switch will open a door, even if the no-touch sensor fails to operate. This new slimline switch also features a heavy gauge stainless steel faceplate, a red/green illuminated light ring, and is IP65 rated, making it ideal for indoor or outdoor use as part of an automatic door or access control system. ValueWave™ no-touch switches are designed for easy installation and trouble-free service in high traffic applications. In addition to this narrow version, the CM-221 & CM-222 Series switches are available in a range of other models with single and double gang heavy-gauge stainless steel faceplates and include illuminated light rings. 3

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities 3