In the past month, Ring – a home security and smart home company owned by Amazon – has drawn scrutiny over a series of breaches, prompting concerns about privacy.
After conducting an investigation in the wake of a recent incident in Mississippi, the cause, according to Ring, is recycled account credentials. Users reused their login information from external, non-Ring services, which allowed hackers to gain access to the devices. In addition to using unique, complex passwords for every account, multifactor authentication is also effective in mitigating cybercrime.
Cybersecurity experts said it’s not that difficult for hackers to gain access to “internet of things” devices, which include Ring security cameras and voice assistants, such as Alexa and Google Home. “Unfortunately, we’re so reliant on passwords at this point, but passwords are absolutely the weakest link,” said Tim Weber, security services director for ADNET Technologies in Farmington, Conn. Mr. Weber, who is a certified ethical hacker, said he had not seen any evidence that Ring’s operating platform had been breached. He recommended that people avoid reusing old passwords because they could have already been compromised as part of a previous data breach without users even knowing it.