Amazon’s Ring cameras are vulnerable to hackers, lawsuit in U.S. claims

(Reuters) – Amazon.com Inc and its Ring home security camera unit have been sued by an Alabama homeowner, who said the cameras’ defective design leaves purchasers vulnerable to cyberattacks.

Orange, who said he paid $249 for his camera in July, said the cameras work only when connected to the internet, and are “fatally flawed” because they do not protect against cyberattacks, despite Ring’s assurances of “peace of mind” and “smart security here, there, everywhere.”

A spokeswoman for Ring said the Santa Monica, California-based company does not discuss legal matters.

The complaint filed in Los Angeles federal court seeks unspecified damages from Ring and Seattle-based Amazon, as well as improved security for new and existing Ring cameras.

It followed several reported incidents of hackers accessing homes through Ring cameras, including when a man repeatedly called an 8-year-old Mississippi girl a racial slur and claimed he was Santa Claus.

“A company that sells a device that is supposed to protect occupants of a home shouldn’t become a platform for potentially endangering those occupants,” John Yanchunis, a lawyer for Orange, said in an interview.

Ring’s main product is a doorbell that contains a security camera and lets homeowners monitor and communicate with visitors through a phone app even if they are not at home.

Amazon has said it bought Ring in April 2018 for $839 million in cash.

Orange, who lives in Jefferson County, Alabama, said he changed his “medium-strong” password and began using two-factor authentication for his camera after learning about the incident involving his children.

“So many devices are tethered to the Internet, and consumers simply don’t have a realization of how that can be so easily exploited,” Yanchunis said.