Ring: Difference between revisions - Consumer Rights Wiki

Line 14:

===2023 FTC settlement===

In a complaint first announced in May 2023, the [[Federal Trade Commission]] says that Ring deceived its customers by failing to restrict employees’ and contractors’ access to its customers’ videos, using its customer videos to train algorithms without consent, and failing to implement security safeguards. These practices led to egregious violations of users’ privacy.<ref>{{Cite web |date=2024-04-23 |title=FTC Sends Refunds to Ring Customers Stemming from 2023 Settlement over Charges the Company Failed to Block Employees and Hackers from Accessing Consumer Videos |url=https://www.ftc.gov/news-events/news/press-releases/2024/04/ftc-sends-refunds-ring-customers-stemming-2023-settlement-over-charges-company-failed-block |website=FTC}}</ref> The stated failure in security safeguard implementation is the result of a 2019 data breach where the log-in credentials for 3,672 Ring camera owners were compromised, exposing log-in emails, passwords, time zones, and the names people give to specific Ring cameras. Using the log-in email and password, an intruder could access a Ring customer’s home address, telephone number, and payment information, including the kind of card they have, and its last four digits and security code. An intruder could also access live camera footage from all active Ring cameras associated with an account, as well as a 30- to 60-day video history, depending on the user’s [[Cloud (service)|cloud]] storage plan.<ref>https://www.buzzfeednews.com/article/carolinehaskins1/data-leak-exposes-personal-data-over-3000-ring-camera-users</ref>

In a complaint first announced in May 2023, the [[Federal Trade Commission]] says that Ring deceived its customers by failing to restrict employees’ and contractors’ access to its customers’ videos, using its customer videos to train algorithms without consent, and failing to implement security safeguards. These practices led to egregious violations of users’ privacy.<ref>{{Cite web |date=2024-04-23 |title=FTC Sends Refunds to Ring Customers Stemming from 2023 Settlement over Charges the Company Failed to Block Employees and Hackers from Accessing Consumer Videos |url=https://www.ftc.gov/news-events/news/press-releases/2024/04/ftc-sends-refunds-ring-customers-stemming-2023-settlement-over-charges-company-failed-block |website=FTC}}</ref> The stated failure in security safeguard implementation is the result of a 2019 data breach where the log-in credentials for 3,672 Ring camera owners were compromised, exposing log-in emails, passwords, time zones, and the names people give to specific Ring cameras. Using the log-in email and password, an intruder could access a Ring customer’s home address, telephone number, and payment information, including the kind of card they have, and its last four digits and security code. An intruder could also access live camera footage from all active Ring cameras associated with an account, as well as a 30- to 60-day video history, depending on the user’s [[Cloud (service)|cloud]] storage plan.<ref>{{Cite web|url=https://www.buzzfeednews.com/article/carolinehaskins1/data-leak-exposes-personal-data-over-3000-ring-camera-users|title=A Data Leak Exposed The Personal Information Of Over 3,000 Ring Users|first=Caroline|last=Haskins|date=2019-12-19|work=Buzzfeed}}</ref>

[[Ring]] settled the complaint for a sum of around $5.6 million to the 117,044 individuals who filed with the complaint, meaning the individual reimbursement was only around $60 per claim; despite some users having lost privacy to highly sensitive videos as many users installed the cameras in sensitive spaces such as bedrooms for both adults and children.

[[Ring]] settled the complaint for a sum of around $5.6 million to the 117,044 individuals who filed with the complaint, meaning the individual reimbursement was only around $60 per claim<ref>{{Cite web|url=https://www.malwarebytes.com/blog/news/2024/04/ring-agrees-to-pay-5-6-million-after-cameras-were-used-to-spy-on-customers|title=Ring agrees to pay $5.6 million after cameras were used to spy on customers|date=2024-04-25|work=Malwarebytes Labs|first=Pieter|last=Arntz|access-date=2026-02-18}}</ref>; despite some users having lost privacy to highly sensitive videos as many users installed the cameras in sensitive spaces such as bedrooms for both adults and children.

==Vulnerabilities==

@@ Line 14: / Line 14: @@
 ===2023 FTC settlement===
-In a complaint first announced in May 2023, the [[Federal Trade Commission]] says that Ring deceived its customers by failing to restrict employees’ and contractors’ access to its customers’ videos, using its customer videos to train algorithms without consent, and failing to implement security safeguards. These practices led to egregious violations of users’ privacy.<ref>{{Cite web |date=2024-04-23 |title=FTC Sends Refunds to Ring Customers Stemming from 2023 Settlement over Charges the Company Failed to Block Employees and Hackers from Accessing Consumer Videos |url=https://www.ftc.gov/news-events/news/press-releases/2024/04/ftc-sends-refunds-ring-customers-stemming-2023-settlement-over-charges-company-failed-block |website=FTC}}</ref>  The stated failure in security safeguard implementation is the result of a 2019 data breach where the log-in credentials for 3,672 Ring camera owners were compromised, exposing log-in emails, passwords, time zones, and the names people give to specific Ring cameras. Using the log-in email and password, an intruder could access a Ring customer’s home address, telephone number, and payment information, including the kind of card they have, and its last four digits and security code. An intruder could also access live camera footage from all active Ring cameras associated with an account, as well as a 30- to 60-day video history, depending on the user’s [[Cloud (service)|cloud]] storage plan.<ref>https://www.buzzfeednews.com/article/carolinehaskins1/data-leak-exposes-personal-data-over-3000-ring-camera-users</ref>
+In a complaint first announced in May 2023, the [[Federal Trade Commission]] says that Ring deceived its customers by failing to restrict employees’ and contractors’ access to its customers’ videos, using its customer videos to train algorithms without consent, and failing to implement security safeguards. These practices led to egregious violations of users’ privacy.<ref>{{Cite web |date=2024-04-23 |title=FTC Sends Refunds to Ring Customers Stemming from 2023 Settlement over Charges the Company Failed to Block Employees and Hackers from Accessing Consumer Videos |url=https://www.ftc.gov/news-events/news/press-releases/2024/04/ftc-sends-refunds-ring-customers-stemming-2023-settlement-over-charges-company-failed-block |website=FTC}}</ref>  The stated failure in security safeguard implementation is the result of a 2019 data breach where the log-in credentials for 3,672 Ring camera owners were compromised, exposing log-in emails, passwords, time zones, and the names people give to specific Ring cameras. Using the log-in email and password, an intruder could access a Ring customer’s home address, telephone number, and payment information, including the kind of card they have, and its last four digits and security code. An intruder could also access live camera footage from all active Ring cameras associated with an account, as well as a 30- to 60-day video history, depending on the user’s [[Cloud (service)|cloud]] storage plan.<ref>{{Cite web|url=https://www.buzzfeednews.com/article/carolinehaskins1/data-leak-exposes-personal-data-over-3000-ring-camera-users|title=A Data Leak Exposed The Personal Information Of Over 3,000 Ring Users|first=Caroline|last=Haskins|date=2019-12-19|work=Buzzfeed}}</ref>
-[[Ring]] settled the complaint for a sum of around $5.6 million to the 117,044 individuals who filed with the complaint, meaning the individual reimbursement was only around $60 per claim; despite some users having lost privacy to highly sensitive videos as many users installed the cameras in sensitive spaces such as bedrooms for both adults and children.
+[[Ring]] settled the complaint for a sum of around $5.6 million to the 117,044 individuals who filed with the complaint, meaning the individual reimbursement was only around $60 per claim<ref>{{Cite web|url=https://www.malwarebytes.com/blog/news/2024/04/ring-agrees-to-pay-5-6-million-after-cameras-were-used-to-spy-on-customers|title=Ring agrees to pay $5.6 million after cameras were used to spy on customers|date=2024-04-25|work=Malwarebytes Labs|first=Pieter|last=Arntz|access-date=2026-02-18}}</ref>; despite some users having lost privacy to highly sensitive videos as many users installed the cameras in sensitive spaces such as bedrooms for both adults and children.
 ==Vulnerabilities==