Login
iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
Powered by MOMENTUMMEDIA
Digital home security firm Ring denies a hack and says an update was responsible for a rash of mysterious logins on 28 May.
IoT doorbell maker Ring has attempted to downplay claims that its customers’ accounts have been hacked following a wave of unauthorised device logins.
“We are aware of an issue where information is displaying inaccurately in Control Center. This is the result of a back-end update, and we’re working to resolve this,” Ring said in an 18 July update to its status website.
“We have no reason to believe this is the result of unauthorised access to customer accounts.”
Throughout the rest of the day, the company said on two occasions that it was “continuing to work on a fix for this issue”, finally announcing the fix was ready on 21 July.
“We have deployed a fix for information displaying inaccurately in Control Center, due to a back-end update. This fix will correct login dates shown for authorised client devices,” it said.
However, comments made by Ring users on an 18 July post on Ring’s official Facebook page paint a picture of frustration at Ring’s lack of recognition that it’s not the date of the logins that appears to be a problem, but the location of the logins.
“Stop lying to us. If people logged in and watched us on our own devices, we deserve to know! We had three logins on ours with different iPhone/ip addresses/browsers,” one irate customer said.
“Unacceptable that users were not made aware of this sooner. This is so violating and inappropriate.”
Another user described the apparent location discrepancy in even more detail.
“I find it interesting that it’s just a ‘bug’ yet one of my several unknown logins from that date was a log in from Spain,” the customer said.
“I’m in Texas so doesn’t seem like just a bug or log ins on prior devices because I can assure you I have never been to Spain.”
Cyber Daily has sought further comment from Ring regarding its customers’ claims, but the only statement provided is the same as that published on the company’s status page, affirming that it is not aware of any malicious activity.
Ring, which is owned by tech giant Amazon, was fined US$5.6 million by the US Federal Trade Commission over poor security and spying incidents in April 2024, based on a June 2023 filing that alleged that the company’s employees and contractors were accessing customer videos without authorisation.
“Not only could every Ring employee and Ukraine-based third-party contractor access every customer’s videos (all of which were stored unencrypted on Ring’s network), but they could also readily download any customer’s videos and then view, share, or disclose those videos at will,” said the FTC in a court filing at the time.
UPDATED 22/07/25 to add Ring response to Cyber Daily.
David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.
Be the first to hear the latest developments in the cyber industry.
