Skip to main content
  1. Home
  2. Smart Home
  3. News

A Ring doorbell vulnerability lets people snoop even after a password change

Ring is promising to do better, and urges folks not to share login details

By
Bill Roberson/Digital Trends

Video doorbells may be cutting down on the amount of time you have to spend running to and from your front door, but they could also be cutting down on the amount of privacy you have in your home. As per a new report from The Information, a major security flaw in popular video doorbells from Ring, the company recently acquired by Amazon for $1 billion, does not require users to re-log into the doorbell app when a password has been changed.

That means that if you’d previously granted access to your Ring doorbell app to say, a significant other, but then wanted to revoke that access after your relationship went sour, he or she would still actually be able to monitor the activity taking place outside your front door. Worse yet, it didn’t matter how much time passed — the app never asked users to sign in again after a password change.

While Ring was notified of the issue beginning in January and claimed to have removed users who were no longer authorized, The Information tested this vulnerability and found that for “several hours,” users were still able to access the app after a password change. Ring’s CEO Jamie Siminoff has even acknowledged the ongoing issue, as kicking users off the platform apparently slows down the Ring app. That said, this window of time presents a serious problem — not only could someone be watching your front door, but he or she could also download videos, or otherwise control the doorbell as an administrator.

Related

This doesn’t bode particularly well for Amazon, which was planning to use Ring video doorbells as part of a secure solution for delivery programs like Amazon Key, which allows delivery personnel to drop off packages directly into someone’s home. But if Ring doorbells can’t even protect against an ex-boyfriend, it will be difficult for Amazon to convince customers that they’ll protect against other ill-intentioned actors.

Ring has since issued a statement with regard to the security exploit, noting that further security measures are on their way. In the meantime, you should do what you can to avoid giving unnecessary actors access to your doorbell.

“Ring values the trust our neighbors place in us and we are committed to the highest level of customer information and data security,” the company said. “We strongly recommend that customers never share their username or password. Instead, they should add family members and other users to their devices through Ring’s ‘Shared Users’ feature. This way, owners maintain control over who has access to their devices and can immediately remove users. Our team is taking additional steps to further improve the password change experience.”

Updated on May 13: Added statement from Ring. 

Editors’ Recommendations

Topics
Lulu Chang
Lulu Chang
Former Digital Trends Contributor
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
Check out these Ring video doorbell alternatives that don’t require a subscription
A Eufy video doorbell installed near a door.

Ring is one of many companies that lock video doorbell features behind a monthly paywall. Unless you're forking out cash every month, you won't have full access to everything your device can offer. The brand also recently instituted a price hike -- and some shoppers are so frustrated that they've started looking elsewhere for their security needs.

If that's you, or if you'd like to find an easy way to cut down your spending this year, here's a look at four Ring alternatives that don't require a subscription. Some of these may offer optional subscriptions, but even if you don't pay, you'll have access to a wide range of features that aren't free on Ring.
Eufy

Read more
Everything you need to know about the Ring Protect price hike
The Ring Elite installed on a wall.

Ring recently announced it's raising the price of the Ring Protect Basic subscription from $4 per month to $5 per month ($40 per year to $50 per year). The change doesn't go into effect until March 11 -- and customers have plenty of questions about the price hike ahead of its arrival. Thankfully, many of these questions have already been answered. There are a lot of caveats to the new pricing schedule, and there's even a way to get the old 2023 pricing throughout the rest of 2024.

Here's a look at everything you need to know about the Ring Protect price hike happening on March 11.
Renew before March 11 to keep your pricing the same

Read more
Ring Battery Doorbell Pro vs. Ring Battery Doorbell Plus: Is the new Pro model worth it?
The Ring Battery Doorbell Plus installed outside a front door.

The Ring Battery Doorbell Pro is the newest member of the Ring family, offering high-end specs without the hassle of wires. However, it's not the only premium battery doorbell up for grabs, as Ring already offers the Battery Doorbell Plus, which is slightly more affordable than the new Pro model, yet comes with many of the same features.

While there are a lot of similarities between the two, there are a few key differences to be aware of before making a purchase. Here's a look at the Ring Battery Doorbell Pro and Ring Battery Doorbell Plus to help you decide which one is best for your home.
Design

Read more