Duracell Energy EV Charger: Difference between revisions

Line 17:

It is not possible to use the charger fully offline, even if smart cards have been registered.<ref name=":0" /><ref name=":1" /> When the charger is on, its WiFi hotspot and Bluetooth discovery is active.

The support team can remotely interact with the charger, due to operating on the cloud.<ref name=":0" /><ref name=":1" />

===User Privacy===

Registration requires the following information:<ref name=":0" /><ref name=":1" />

Line 29:

Line 31:

The app asks for the following permissions:<ref>{{Cite web |title=Duracell Energy EV Charger App |url=https://apps.apple.com/gb/app/duracell-energy-ev-charger/id1644806480 |url-status=live |access-date=2025-11-05 |website=App Store}}</ref><ref>{{Cite web |title=Duracell Energy EV Charger |url=https://play.google.com/store/apps/datasafety?id=cn.enplus.chargein.puredrive |url-status=live |access-date=2025-11-05 |website=Google Play}}</ref>

*Network

*Bluetooth

*Bluetooth - for setup only

*Location servers - your precise geo-location

*Notifications

*Camera - to add smart cards via bar code (can manually input card serial number)

===Observations===

~~Sometimes,~~ the charger ~~itself cannot~~ be ~~found, even when using~~ the ~~app with all requested permissions granted and enabled~~. It is ~~unclear if this~~ is ~~due~~ to connection ~~issues, unexpected configurations or platform specific bugs~~.{{~~Citation needed~~}}

The default password for the charger WiFi hotspot is easily guessable.<ref name=":0" /><ref name=":1" /><ref>{{Cite web |last=Jacob |first=Charmaine |date=2023-11-15 |title=Most common passwords: 70% can be cracked in less than a second |url=https://www.cnbc.com/2023/11/16/most-common-passwords-70percent-can-be-cracked-in-less-than-a-second.html |url-status=live |access-date=2025-11-05 |website=CNBD}}</ref><ref>{{Cite web |last= |first= |date=2012-09-10 |title=Password List For Penetration Testing |url=https://pentestlab.blog/2012/09/10/password-list-for-penetration-testing/ |url-status=live |archive-url=https://web.archive.org/web/20200815084512/https://pentestlab.blog/2012/09/10/password-list-for-penetration-testing/ |archive-date=2020-08-15 |access-date=2025-11-05 |website=pentestlab.blog}}</ref><ref>{{Cite web |date=2022-11-07 |title=These are the world's most common passwords-Is yours on the list? |url=https://www.livemint.com/news/india/these-are-the-world-s-most-common-passwords-is-yours-on-the-list-11668647794419.html |url-status=live |access-date=2025-11-05 |website=Mint}}</ref> Changing the password is done via web browser. To change the password, you must connect to the charger hotspot in WiFi settings then visit a local IP address. Any settings enforcing HTTPS-only must be disabled to access hotpot configuration, as the connection is made using HTTP.<ref>{{Cite web |date=2024-09-18 |title=Connecting your charger to network |url=https://support.ev.energy/en/support/solutions/articles/80001153520-connecting-your-charger-to-network |url-status=live |archive-url=https://web.archive.org/web/20241012191016/https://support.ev.energy/en/support/solutions/articles/80001153520-connecting-your-charger-to-network |archive-date=2024-10-12 |access-date=2025-11-05 |website=ev.energy}}</ref> The hotspot automatically switches off 15 minutes after connecting to it.<ref name=":0" /><ref name=":1" />

~~The default password for~~ the charger WiFi hotspot is easily guessable.<ref name=":0" /><ref name=":1" /><ref>{{Cite web |last=Jacob |first=Charmaine |date=2023-11-15 |title=Most common passwords: 70% can be cracked in less than a second |url=https://www.cnbc.com/2023/11/16/most-common-passwords-70percent-can-be-cracked-in-less-than-a-second.html |url-status=live |access-date=2025-11-05 |website=CNBD}}</ref><ref>{{Cite web |last= |first= |date=2012-09-10 |title=Password List For Penetration Testing |url=https://pentestlab.blog/2012/09/10/password-list-for-penetration-testing/ |url-status=live |archive-url=https://web.archive.org/web/20200815084512/https://pentestlab.blog/2012/09/10/password-list-for-penetration-testing/ |archive-date=2020-08-15 |access-date=2025-11-05 |website=pentestlab.blog}}</ref><ref>{{Cite web |date=2022-11-07 |title=These are the world's most common passwords-Is yours on the ~~list? |url=https://www~~.~~livemint.com/news/india/these-are-the-world-s-most-common-passwords-~~is~~-yours-on-the-list-11668647794419.html |url-status=live |access-date=2025-11-05 |website=Mint}}</ref> Changing the password~~ is ~~done via web browser. Any settings enforcing HTTPS must be disabled~~ to ~~access hotpot configuration~~, as the ~~connection is made using HTTP~~.~~<ref>~~{{Cite web |date=2024-09-18 |title=Connecting your charger to network |url=https://support.ev.energy/en/support/solutions/articles/80001153520-connecting-your-charger-to-network |url-status=live |archive-url=https://web.archive.org/web/20241012191016/https://support.ev.energy/en/support/solutions/articles/80001153520-connecting-your-charger-to-network |archive-date=2024-10-12 |access-date=2025-11-05 |website=ev.energy}}~~</ref>~~

Sometimes, the charger cannot be found (when powered on), even when using the app with all requested permissions granted and enabled. It is unclear if this is due to connection issues, unexpected configurations or bugs in the Android or iOS app.{{Citation needed}}

==Incidents==

@@ Line 17: / Line 17: @@
 It is not possible to use the charger fully offline, even if smart cards have been registered.<ref name=":0" /><ref name=":1" /> When the charger is on, its WiFi hotspot and Bluetooth discovery is active.
+The support team can remotely interact with the charger, due to operating on the cloud.<ref name=":0" /><ref name=":1" />
 ===User Privacy===
 Registration requires the following information:<ref name=":0" /><ref name=":1" />
@@ Line 29: / Line 31: @@
 The app asks for the following permissions:<ref>{{Cite web |title=Duracell Energy EV Charger App |url=https://apps.apple.com/gb/app/duracell-energy-ev-charger/id1644806480 |url-status=live |access-date=2025-11-05 |website=App Store}}</ref><ref>{{Cite web |title=Duracell Energy EV Charger |url=https://play.google.com/store/apps/datasafety?id=cn.enplus.chargein.puredrive |url-status=live |access-date=2025-11-05 |website=Google Play}}</ref>
 *Network
-*Bluetooth
+*Bluetooth - for setup only
 *Location servers - your precise geo-location
 *Notifications
+*Camera - to add smart cards via bar code (can manually input card serial number)
 ===Observations===
-Sometimes, the charger itself cannot be found, even when using the app with all requested permissions granted and enabled. It is unclear if this is due to connection issues, unexpected configurations or platform specific bugs.{{Citation needed}}
+The default password for the charger WiFi hotspot is easily guessable.<ref name=":0" /><ref name=":1" /><ref>{{Cite web |last=Jacob |first=Charmaine |date=2023-11-15 |title=Most common passwords: 70% can be cracked in less than a second |url=https://www.cnbc.com/2023/11/16/most-common-passwords-70percent-can-be-cracked-in-less-than-a-second.html |url-status=live |access-date=2025-11-05 |website=CNBD}}</ref><ref>{{Cite web |last= |first= |date=2012-09-10 |title=Password List For Penetration Testing |url=https://pentestlab.blog/2012/09/10/password-list-for-penetration-testing/ |url-status=live |archive-url=https://web.archive.org/web/20200815084512/https://pentestlab.blog/2012/09/10/password-list-for-penetration-testing/ |archive-date=2020-08-15 |access-date=2025-11-05 |website=pentestlab.blog}}</ref><ref>{{Cite web |date=2022-11-07 |title=These are the world's most common passwords-Is yours on the list? |url=https://www.livemint.com/news/india/these-are-the-world-s-most-common-passwords-is-yours-on-the-list-11668647794419.html |url-status=live |access-date=2025-11-05 |website=Mint}}</ref> Changing the password is done via web browser. To change the password, you must connect to the charger hotspot in WiFi settings then visit a local IP address. Any settings enforcing HTTPS-only must be disabled to access hotpot configuration, as the connection is made using HTTP.<ref>{{Cite web |date=2024-09-18 |title=Connecting your charger to network |url=https://support.ev.energy/en/support/solutions/articles/80001153520-connecting-your-charger-to-network |url-status=live |archive-url=https://web.archive.org/web/20241012191016/https://support.ev.energy/en/support/solutions/articles/80001153520-connecting-your-charger-to-network |archive-date=2024-10-12 |access-date=2025-11-05 |website=ev.energy}}</ref> The hotspot automatically switches off 15 minutes after connecting to it.<ref name=":0" /><ref name=":1" />
-The default password for the charger WiFi hotspot is easily guessable.<ref name=":0" /><ref name=":1" /><ref>{{Cite web |last=Jacob |first=Charmaine |date=2023-11-15 |title=Most common passwords: 70% can be cracked in less than a second |url=https://www.cnbc.com/2023/11/16/most-common-passwords-70percent-can-be-cracked-in-less-than-a-second.html |url-status=live |access-date=2025-11-05 |website=CNBD}}</ref><ref>{{Cite web |last= |first= |date=2012-09-10 |title=Password List For Penetration Testing |url=https://pentestlab.blog/2012/09/10/password-list-for-penetration-testing/ |url-status=live |archive-url=https://web.archive.org/web/20200815084512/https://pentestlab.blog/2012/09/10/password-list-for-penetration-testing/ |archive-date=2020-08-15 |access-date=2025-11-05 |website=pentestlab.blog}}</ref><ref>{{Cite web |date=2022-11-07 |title=These are the world's most common passwords-Is yours on the list? |url=https://www.livemint.com/news/india/these-are-the-world-s-most-common-passwords-is-yours-on-the-list-11668647794419.html |url-status=live |access-date=2025-11-05 |website=Mint}}</ref> Changing the password is done via web browser. Any settings enforcing HTTPS must be disabled to access hotpot configuration, as the connection is made using HTTP.<ref>{{Cite web |date=2024-09-18 |title=Connecting your charger to network |url=https://support.ev.energy/en/support/solutions/articles/80001153520-connecting-your-charger-to-network |url-status=live |archive-url=https://web.archive.org/web/20241012191016/https://support.ev.energy/en/support/solutions/articles/80001153520-connecting-your-charger-to-network |archive-date=2024-10-12 |access-date=2025-11-05 |website=ev.energy}}</ref>
+Sometimes, the charger cannot be found (when powered on), even when using the app with all requested permissions granted and enabled. It is unclear if this is due to connection issues, unexpected configurations or bugs in the Android or iOS app.{{Citation needed}}
 ==Incidents==