European Commission orders mass recall of creepy, leaky child-tracking smartwatch • The Register
The European Commission has ordered the recall of a smartwatch geared toward youngsters that permits miscreants to pinpoint the wearer’s location, posing a probably “serious risk”.
The fee makes use of its Rapid Alert System for Non-Food merchandise (Rapex) to ship out signals to different international locations within the European Economic Area about bad merchandise of their markets.
The newest weekly record contains German company Enox’s Safe-KID-One watch, which is advertised to oldsters as some way of maintaining tabs on their little ones – ostensibly to stay them secure – and is derived with one-click buttons for speed-dialling members of the family.
However, the fee stated the tool does no longer agree to the Radio Equipment Directive and detailed “serious” dangers related to the tool.
“The mobile application accompanying the watch has unencrypted communications with its backend server and the server enables unauthenticated access to data,” the directive stated.
As a consequence, knowledge on location historical past, telephone numbers and tool serial quantity will also be discovered and adjusted.
“A malicious user can send commands to any watch making it call another number of his choosing, can communicate with the child wearing the device or locate the child through GPS,” the alert warned.
It ordered public government to “recall the product from end users”.
Data coverage professionals prompt that is the primary time the Rapex device has been used for bad merchandise associated with knowledge coverage and privateness. Data coverage officer Bernieri Christian, who noticed the alert, described the use of the device – and the product recall – as “huge”.
1/four This is very large!! As a ways as I do know, the UE has issued the FIRST Rapid Alert (#RAPEX) for bad merchandise that can be associated with knowledge coverage and #Privacy.
This power me loopy: the product is a smartwatch for MONITORING KIDS (#ENOX SAFE KID ONE with GSM and GPS built-in) %.twitter.com/huFsSxDrOp
— Bernieri Christian (@prevenzione) February 1, 2019
The Enox watch is a ways from the one creepy, leaky kid-tracking smartwatch in the marketplace. In October, safety company Mnemonic and the Norwegian Consumer Council launched a record that discovered “significant security flaws, unreliable safety features and a lack of consumer protection” within the fashions they examined.
Similar problems were raised about attached toys; final June Amazon stopped promoting CloudPets toys after privateness advocates raised the alarm in regards to the units, by which a variety of safety holes were discovered.
We’ve requested Enox for remark. ®