Some parents get their kids smartwatches to buy themselves a little peace of mind about their child’s safety.
The latest incident involves the Enox Safe-KID-One, which was just recalled by the European Commission as it was deemed particularly vulnerable to malicious actors.
The alert was submitted to the Commission by Iceland, with the alleged lack of data encryption cited as the primary reason for the recall.
“The mobile application accompanying the watch has unencrypted communications with its backend server and the server enables unauthenticated access to data.
As a consequence, the data such as location history, phone numbers, serial number(s) can easily be retrieved and changed.
A malicious user can send commands to any watch making it call another number of his choosing, can communicate with the child wearing the device or locate the child through GPS.”