- The log-in information of 3,672 Amazon Ring camera owners were leaked this week, Buzzfeed News first reported.
- Ring users’ personal information was left exposed, giving potential intruders access to their home addresses, credit card information, and footage from Ring cameras at their homes.
- The exposure is the latest in a series of incidents involving compromised Ring cameras in the past month.
- Ring said in a statement to Business Insider that the exposure was not the result of Ring’s servers being hacked.
- Visit Business Insider’s homepage for more stories.
Thousands of Ring camera owners’ personal information was exposed on an unprotected website this week, making their emails and passwords available to potential intruders, according to a Buzzfeed News report.
The exposed log-in information was reportedly discovered by a security researcher on an unprotected text storage website, who first posted about his discovery on Reddit. After Buzzfeed published its story, TechCrunch independently reported that 1,562 people’s Ring passwords were uploaded to a dark web server, noting that the passwords appear to be a subset of the passwords reported by Buzzfeed.
Leaked data included people’s log-in credentials, which could grant an intruder access to their account. That would allow the potential hacker to see their name, address, credit card information, and footage from Ring cameras dating back at least 30 days.
A Ring spokesperson told Business Insider that the data was not stolen from Ring’s systems or network, implying that the passwords were aggregated from other companies’ data breaches. Ring has notified people who were affected and is working with law enforcement, the spokesperson added.
The exposure is the latest in a series of cybersecurity issues faced by Ring owners this month. Last week, a video of a hacker gaining access to a Ring camera and harassing an 8-year-old went viral. Another woman said her Ring was compromised by a hacker who began yelling at her dog to “wake the f— up.”
Ring has maintained that these hacks are the result of users’ passwords being stolen through avenues other than its own networks, rather than some inherent flaw in Ring’s systems. Ring doesn’t require two-factor-authentication for its users to log in, but people have the option to enable it for their Ring devices.
Real Life. Real News. Real Voices
Help us tell more of the stories that matterBecome a founding member
Subscribe to the newsletter news
We hate SPAM and promise to keep your email address safe