Your smart doorbell might be spying you.
A new report from The Intercept claims Ring, the smart doorbell company owned by Amazon, allowed its employees to watch live footage from customers’ cameras.
Ring engineers and executives were reportedly given access to ‘unfiltered, round-the-clock’ feeds of some users’ footage.
The unencrypted videos were shared between employees on company servers and included footage from outside and, in some cases, inside users’ homes.
Ring’s lax security practices began with its Ukraine-based research and development team, according to the Intercept.
There, employees had access to a folder on Amazon’s S3 cloud storage service, which included a list of ‘every video created by every Ring camera around the world.’
From there, employees could access the footage from anywhere, according to a separate report from the Information.
Another database linked every video file with the specific customer that it belonged to.
Employees only need a user’s email address to view all the Ring videos associated with it.