Wemo: Difference between revisions
m Adding to incident article Tag: Manual revert |
m Changed it to new-to-old controversy ordering, similar to Adobe and the John Deere sample company article |
||
| Line 17: | Line 17: | ||
====User privacy==== | ====User privacy==== | ||
Since late 2023, the [https://www.belkin.com/legal/privacy-policy/ privacy policy] of Belkin and Wemo have merged, sharing the same terms with each other. The data collected on users includes account information such as email and password, device information, first and third-party [[Web cookie|cookies]], age, location, and IP address.<ref>{{Cite web |author= |title=WeMO PRIVACY POLICY |url=https://www.wemo.com/privacy-policy/ |website=Wemo |date= |access-date=29 Mar 2025 |url-status=dead |archive-url=https://web.archive.org/web/20230107062703/https://www.wemo.com/privacy-policy/#typesofinformation |archive-date=7 Jan 2023}}</ref> Belkin shares this info with marketing partners unless the user opts-out.<ref>{{Cite web |author= |title=Marketing |url=https://www.belkin.com/legal/privacy-policy/#marketing-anchor |website=[[Belkin]] |date=Jan 2024 |access-date=19 Feb 2026 |url-status=live |archive-url=https://web.archive.org/web/20260123140413/https://www.belkin.com/legal/privacy-policy/#marketing-anchor |archive-date=23 Jan 2026}}</ref> Users are allowed to make requests to access, withdraw consent, object, and delete most of the information Belkin has collected on them.<ref>{{Cite web |author= |title=Your Rights in relation to your Personal Information |url=https://www.belkin.com/legal/privacy-policy/#your-rights-in-relation |website=[[Belkin]] |date=Jan 2024 |access-date=29 Mar 2025 |url-status=live |archive-url=https://web.archive.org/web/20260123140413/https://www.belkin.com/legal/privacy-policy/#your-rights-in-relation |archive-date=23 Jan 2026}}</ref> Belkin states they may need to hold onto information for "Defending Belkin against legal claims" or "Needing to respond to customer complaints and queries" | Since late 2023, the [https://www.belkin.com/legal/privacy-policy/ privacy policy] of Belkin and Wemo have merged, sharing the same terms with each other. The data collected on users includes account information such as email and password, device information, first and third-party [[Web cookie|cookies]], age, location, and IP address.<ref>{{Cite web |author= |title=WeMO PRIVACY POLICY |url=https://www.wemo.com/privacy-policy/ |website=Wemo |date= |access-date=29 Mar 2025 |url-status=dead |archive-url=https://web.archive.org/web/20230107062703/https://www.wemo.com/privacy-policy/#typesofinformation |archive-date=7 Jan 2023}}</ref> Belkin shares this info with marketing partners unless the user opts-out.<ref>{{Cite web |author= |title=Marketing |url=https://www.belkin.com/legal/privacy-policy/#marketing-anchor |website=[[Belkin]] |date=Jan 2024 |access-date=19 Feb 2026 |url-status=live |archive-url=https://web.archive.org/web/20260123140413/https://www.belkin.com/legal/privacy-policy/#marketing-anchor |archive-date=23 Jan 2026}}</ref> Users are allowed to make requests to access, withdraw consent, object, and delete most of the information Belkin has collected on them.<ref>{{Cite web |author= |title=Your Rights in relation to your Personal Information |url=https://www.belkin.com/legal/privacy-policy/#your-rights-in-relation |website=[[Belkin]] |date=Jan 2024 |access-date=29 Mar 2025 |url-status=live |archive-url=https://web.archive.org/web/20260123140413/https://www.belkin.com/legal/privacy-policy/#your-rights-in-relation |archive-date=23 Jan 2026}}</ref> Belkin states they may need to hold onto information for "Defending Belkin against legal claims" or "Needing to respond to customer complaints and queries."<ref>{{Cite web |author= |title=Retention of Personal Information |url=https://www.belkin.com/legal/privacy-policy/#retention-of |website=[[Belkin]] |date=Jan 2024 |access-date=29 Mar 2025 |url-status=live |archive-url=https://web.archive.org/web/20260123140413/https://www.belkin.com/legal/privacy-policy/#retention-of |archive-date=23 Jan 2026}}</ref> | ||
====Business model==== | ====Business model==== | ||
| Line 26: | Line 26: | ||
==Incidents== | ==Incidents== | ||
===Discontinuation of cloud service (''2026'')=== | |||
{{Excerpt|Wemo discontinuation of service}} | |||
===DNS activity (''2024'')=== | |||
Some users of Wemo have noticed their switches connect to multiple unrelated domains, such as to CNN and [[wikipedia:Fastly|Fastly]].<ref>{{Cite web |author=sd_042 |title=Fun fact: Wemo switches act as a DNS server |url=https://old.reddit.com/r/WeMo/comments/1auslst/fun_fact_wemo_switches_act_as_a_dns_server/ |website=[[Reddit]] |date=19 Feb 2024 |access-date=29 Mar 2025 |url-status=live |archive-url=http://web.archive.org/web/20240307040322/https://old.reddit.com/r/WeMo/comments/1auslst/fun_fact_wemo_switches_act_as_a_dns_server/ |archive-date=7 Mar 2024}}</ref> Other reports mention each Wemo device making 160,000+ [[wikipedia:Domain_Name_System|DNS]] requests in a 24-hour timeframe.<ref>{{Cite web |author=D3-Doom |title=Fun fact: Wemo switches act as a DNS server |url=https://old.reddit.com/r/WeMo/comments/1auslst/fun_fact_wemo_switches_act_as_a_dns_server/ktxkqx8/ |website=[[Reddit]] |date=8 Mar 2024 |access-date=19 Feb 2026 |url-status=live |archive-url=https://web.archive.org/web/20260222233252/https://old.reddit.com/r/WeMo/comments/1auslst/fun_fact_wemo_switches_act_as_a_dns_server/ktxkqx8/ |archive-date=22 Feb 2026}}</ref>[[File:Wemo affected products after cloud shutdown.png|right|thumb|List of affected products from the discontinuation of cloud services]] | |||
===Connection issues (''2018—2026'')=== | ===Connection issues (''2018—2026'')=== | ||
Since 2018, there have been reports of Wemo devices losing connection to networks frequently.<ref>{{Cite web |author=luisfpinto |title=The most common problems and issues with Wemo devices | Since 2018, there have been reports of Wemo devices losing connection to networks frequently.<ref>{{Cite web |author=luisfpinto |date=21 Jun 2018 |title=The most common problems and issues with Wemo devices |url=https://old.reddit.com/r/WeMo/comments/8sv90i/the_most_common_problems_and_issues_with_wemo/ |url-status=live |archive-url=http://web.archive.org/web/20230610122822/https://old.reddit.com/r/WeMo/comments/8sv90i/the_most_common_problems_and_issues_with_wemo/ |archive-date=10 Jun 2023 |access-date=19 Feb 2026 |website=[[Reddit]]}}</ref> This has been the case for dimmers,<ref>{{Cite web |author=boggsrays |date=28 Dec 2022 |title=The End of WeMo? |url=https://old.reddit.com/r/WeMo/comments/zwb7wr/comment/j1xqs3h/ |url-status=live |archive-url=https://web.archive.org/web/20260222233029/https://old.reddit.com/r/WeMo/comments/zwb7wr/the_end_of_wemo/j1xqs3h/ |archive-date=22 Feb 2026 |access-date=29 Mar 2025 |website=[[Reddit]]}}</ref> plugs,<ref>{{Cite web |author=Specul8 |date=14 Nov 2023 |title=WeMo in 2023. Is it dead? Probably. |url=https://old.reddit.com/r/WeMo/comments/17ur9b2/comment/k97i0dp/ |url-status=live |archive-url=https://web.archive.org/web/20260222233050/https://old.reddit.com/r/WeMo/comments/17ur9b2/wemo_in_2023_is_it_dead_probably/k97i0dp/ |archive-date=22 Feb 2026 |access-date=19 Feb 2025 |website=[[Reddit]]}}</ref> and switches.<ref>{{Cite web |author=rickatk |date=13 Jan 2023 |title=Thoughts on WEMO going into 2024? |url=https://old.reddit.com/r/WeMo/comments/18iidjr/thoughts_on_wemo_going_into_2024/m6utdkq/ |url-status=live |archive-url=https://web.archive.org/web/20260222233112/https://old.reddit.com/r/WeMo/comments/18iidjr/thoughts_on_wemo_going_into_2024/m6utdkq/ |archive-date=22 Feb 2026 |access-date=19 Feb 2026 |website=[[Reddit]]}}</ref> Device rules created through the Wemo app have also been described as unreliable.<ref>{{Cite web |author=-JEFF007- |date=17 Dec 2023 |title=Thoughts on WEMO going into 2024? |url=https://old.reddit.com/r/WeMo/comments/18iidjr/thoughts_on_wemo_going_into_2024/kdr6n38/ |url-status=live |archive-url=https://web.archive.org/web/20260222233136/https://old.reddit.com/r/WeMo/comments/18iidjr/thoughts_on_wemo_going_into_2024/kdr6n38/ |archive-date=22 Feb 2026 |access-date=19 Feb 2026 |website=[[Reddit]]}}</ref> In some cases, the Wemo cloud becomes offline, with users being led to 404 pages.<ref>{{Cite web |author= |date=12 Dec 2022 |title=Belkin Wemo is the worst! The App is full of bugs, the cloud is "drifted away" every other day, and even their link to the "more info" is dead! |url=https://old.reddit.com/r/WeMo/comments/zkd9xc/belkin_wemo_is_the_worst_the_app_is_full_of_bugs/ |url-status=live |archive-url=http://web.archive.org/web/20221213062324/https://old.reddit.com/r/WeMo/comments/zkd9xc/belkin_wemo_is_the_worst_the_app_is_full_of_bugs/ |archive-date=13 Dec 2022 |access-date=19 Feb 2026 |website=[[Reddit]]}}</ref> Reports of Amazon Alexa and [[Google]] home integrations not working for periods of time are also common.<ref>{{Cite web |author=JonSnowWho |date=17 Jun 2025 |title=Google is trying... |url=https://old.reddit.com/r/WeMo/comments/1le3til/google_is_trying/ |url-status=live |archive-url=https://web.archive.org/web/20260222233206/https://old.reddit.com/r/WeMo/comments/1le3til/google_is_trying/ |archive-date=22 Feb 2026 |access-date=19 Feb 2026 |website=[[Reddit]]}}</ref> Users have reported the devices only working with Apple Homekit<ref>{{Cite web |author=XYZZY_1002 |date=26 Nov 2024 |title=Wemo Plugs and some Switches/Dimmers suddenly no longer detected |url=https://old.reddit.com/r/WeMo/comments/1h0ec6v/wemo_plugs_and_some_switchesdimmers_suddenly_no/ |url-status=live |archive-url=https://web.archive.org/web/20260222233228/https://old.reddit.com/r/WeMo/comments/1h0ec6v/wemo_plugs_and_some_switchesdimmers_suddenly_no/ |archive-date=22 Feb 2026 |access-date=19 Feb 2026 |website=[[Reddit]]}}</ref>, which can be inconvenient for users without Apple accounts or compatible devices. | ||
|url=https://old.reddit.com/r/WeMo/comments/8sv90i/the_most_common_problems_and_issues_with_wemo/ | |||
|title=Belkin Wemo is the worst! The App is full of bugs, the cloud is "drifted away" every other day, and even their link to the "more info" is dead! |url=https://old.reddit.com/r/WeMo/comments/zkd9xc/belkin_wemo_is_the_worst_the_app_is_full_of_bugs/ | |||
=== | ===Security vulnerabilities (''2013—2023'')=== | ||
On 5 November 2013, Wemo updated its API to prevent future XML injection attacks.<ref>{{Cite web |author= |date= |title=Wemo® and Security |url=https://www.belkin.com/support-article/?articleNum=80322 |url-status=live |archive-url=https://web.archive.org/web/20230926192207/https://www.belkin.com/support-article/?articleNum=80322 |archive-date=26 Sep 2023 |access-date=19 Feb 2026 |website=[[Belkin]]}}</ref> | |||
=== | On 16 May 2023, multiple websites reported a Sternum study regarding a buffer overflow vulnerability in the Wemo Mini Smart Plug V2.<ref>{{Cite web |last1=Serper |first1=Amit |last2=Yakar |first2=Reuven |date=16 May 2023 |title=‘FriendlyName’ Buffer Overflow Vulnerability in Wemo Smart Plug V2 |url=https://sternumiot.com/iot-blog/mini-smart-plug-v2-vulnerability-buffer-overflow/ |url-status=live |archive-url=https://web.archive.org/web/20230516160431/https://sternumiot.com/iot-blog/mini-smart-plug-v2-vulnerability-buffer-overflow/ |archive-date=16 May 2023 |access-date=19 Feb 2026 |website=Sternum}}</ref> The study mentions the device could be exploited through a program called pyWemo<ref>{{Cite web |last=Lakshmanan |first=Ravie |date=17 May 2023 |title=Serious Unpatched Vulnerability Uncovered in Popular Belkin Wemo Smart Plugs |url=https://thehackernews.com/2023/05/serious-unpatched-vulnerability.html |url-status=live |archive-url=https://web.archive.org/web/20230517155641/https://thehackernews.com/2023/05/serious-unpatched-vulnerability.html |archive-date=17 May 2023 |access-date=19 Feb 2026 |website=The Hacker News}}</ref> and potentially through cloud controls.<ref>{{Cite web |last=Davis |first=Wes |date=16 May 2023 |title=PSA: time to recycle your old Wemo smart plugs (if you haven’t already) |url=https://www.theverge.com/2023/5/16/23725290/wemo-smart-plug-v2-smart-home-security-vulnerability |url-status=live |archive-url=https://web.archive.org/web/20230517021155/https://www.theverge.com/2023/5/16/23725290/wemo-smart-plug-v2-smart-home-security-vulnerability |archive-date=17 May 2023 |access-date=29 Mar 2025 |website=The Verge}}</ref> In their official response, Wemo stated "we believe that bad actors cannot exploit this vulnerability unless they have access to the user's local network",<ref>{{Cite web |author=WEMOcares |date=17 May 2023 |title=WEMOcares on X |url=https://nitter.catsarch.com/WEMOcares/status/1658963426230562819 |url-status=live |archive-url=https://web.archive.org/web/20260324184234/https://nitter.catsarch.com/WEMOcares/status/1658963426230562819 |archive-date=24 Mar 2026 |access-date=19 Mar 2025 |website=[[X]]}}</ref> and "We discontinued the Wemo Mini Smart Plug V2 (F7C063) in 2020"<ref>{{Cite web |author=WEMOcares |date=17 May 2023 |title=WEMOcares on X |url=https://nitter.catsarch.com/WEMOcares/status/1658963635882938374 |url-status=live |archive-url=https://web.archive.org/web/20260324184237/https://nitter.catsarch.com/WEMOcares/status/1658963635882938374 |archive-date=24 Mar 2026 |access-date=19 Feb 2026 |website=[[X]]}}</ref> despite not making this information publicly available prior. During this report, the Wemo app hadn't been updated in two years, with the most recent update being on February 23, 2021, as previously mentioned.<ref name="AAS" /> | ||
{{ | |||
==Products== | ==Products== | ||