Researchers at software security company Checkmarx discovered the vulnerability in the Ring Android app. According to the firm, bugs in the app allowed other apps on the same device access to its content. Along with video recordings and geolocation, it could also leak the user’s personal information, including full name, email, phone number, and address. While developers of trusted apps wouldn’t look to exploit this vulnerability, bad actors could trick users to install malicious apps and gain access to the Ring app‘s content. This could lead to a devastating attack. With access to the camera feed, attackers could not only see the movement of people in the house but also gain access to sensitive information that the camera records. For example, the camera may record someone entering their login credentials or payment info on a mobile or computer screen. Thankfully, it’s been three months since the patch was released. So most Ring customers may have already installed the new version of the app (v3.51.0 or higher). However, if you have auto-updates disabled and didn’t manually update the Ring app in the past few months, you might still be vulnerable to it. So make sure to check for an update immediately. You can click the button below to download the latest version of the app from the Play Store. DOWNLOAD RING APP
