Amazon’s Ring Neighbors app exposed users’ precise locations and home addresses
Zack Whittaker reports:
A security flaw in Ring’s Neighbors app was exposing the precise locations and home addresses of users who had posted to the app.
Ring, the video doorbell and home security startup acquired by Amazon for $1 billion, launched Neighbors in 2018 as a breakaway feature in its own standalone app. Neighbors is one of several neighborhood watch apps, like Nextdoor and Citizen, that lets users anonymously alert nearby residents to crime and public-safety issues.
While users’ posts are public, the app doesn’t display names or precise locations — though most include video taken by Ring doorbells and security cameras. The bug made it possible to retrieve the location data on users who posted to the app, including those who are reporting crimes.
Read more on TechCrunch.