Eken Fixes Security Issues in Doorbell Cameras Sold by Amazon, Walmart, Others
Vulnerabilities found by CR could have allowed a stalker to monitor household members
If you’re still using a video doorbell made by Eken, Fishbot, Rakeblue, Tuck, or any of several other brands that use similar hardware and the Aiwit smartphone app, then you’ll want to make sure it has received an important firmware update. (See details below.)
The various doorbells and the app are all produced by a company called Eken Group, which sells products under its own name and also has licensing deals with other video doorbell brands. The firmware update is one of several measures the company has taken to fix vulnerabilities found by Consumer Reports. The most serious of them could have allowed a stalker or other dangerous actor to monitor the feed from the doorbell camera.
How to Check Your Doorbell’s Firmware
These doorbells should receive the firmware update automatically, which is what we observed with the four test samples in CR’s labs. But you should confirm that your doorbell is running a current version.
To check the firmware version, go to the Devices page in the Aiwit app and tap the doorbell’s name to open the settings, which lists the firmware version number. Depending on the brand and model, the correct number will be 2.4.1 or higher. If that’s what you see, your doorbell is up to date.
If you see a lower version number, go back to the Devices page in the app and look for a red chat bubble at the bottom right of the doorbell tile. Tap that bubble icon to find a message about the firmware update. The message should tell you to keep the doorbell connected to WiFi while the update downloads automatically.
At this point, you’ll want to wait a few hours (for one doorbell, our testers had to wait almost two days) and check the firmware version again to make sure the update is complete.