NCC Group published a report last week outlining domestic IoT nightmares It assessed smart doorbells made by three vendors Victure, Qihoo and Accfly. The report found unpatched and longstanding critical bugs in the devices. The scope of the problems uncovered included undocumented features that, if known, could be exploited by hackers. Other issues found were tied to the mobile applications used to access the doorbell and vulnerabilities in the hardware itself. Thirty-nine percent of all U.S homes have a connected device, according to Hub Entertainment Research.
Source: https://threatpost.com/smart-doorbell-vulnerable-to-attack/162527/