14 DAY TRIAL // Hacking tools that can be used to break into Ring cameras can be found on the dark web for just a few bucks, and when paired with a weak security configuration, they can allow virtually anyone to see and hear innocent people in their own homes.
A recent incident that took place in Tennessee raised the alarm on poor security protections used for surveillance systems, as a hacker managed to break into a Ring camera, talk to a little girl in her bedroom, and play a song through the built-in speaker.
Now a report from Motherboard reveals that hacking Ring cameras is something that many hackers can do with just a few dollars, as dedicated software that can be used specifically for this purpose is sold online for as low as $8.
More specifically, a tool called “Ring Video Doorbell Config” advertised on a hacking forum guarantees what is called a “high CPM,” also referred to as high check per minute, which means it can try a wide variety of usernames and passwords to attempt to break into Ring’s video doorbell. Similar tools, such as a Ring.com checker, is available for just $6 on the same forum, according to the cited source.
Ring: No security breach
Demand for such hacking software is believed to be rather high, with one member of the forum posting that one purpose for such a tool could be “planning to break into the persons [sic] house.”
Without a doubt, such hacking tools are worrying, to say the least, but a growing number of breaches also happen due to poor security settings. While Amazon-owned Ring does encourage users to set up two-factor authentication and other protection layers for their devices, none of these measures are enforced, meaning that a significant number of customers stick with the default settings.
“As a precaution, we highly and openly encourage all Ring users to enable two-factor authentication on their Ring account, add Shared Users (instead of sharing login credentials), use strong passwords, and regularly change their passwords,” a Ring spokesperson is quoted as saying.
The company says the Tennessee incident isn’t the result of a breach and an investigation is still under way.