Traditional Culture Encyclopedia - Weather inquiry - 3 15 exposure low-profile children's smart watches: walking peeping

3 15 exposure low-profile children's smart watches: walking peeping

3 15 exposure low-profile children's smart watches: walking peeping

3 15 exposure low-profile children's smart watches: walking voyeurs, many low-profile children's smart watches are selling well in major e-commerce platforms. Exposing this kind of watch at the 3 15 party makes it easy to get children's private information and become a "voyeur" for walking. 3 15 exposure low-profile children's smart watch: walking and peeping.

3 15 exposure low-profile children's smart watch: walking voyeur 1 Today's children's smart watches have powerful hardware, intimate functions, real-time positioning, high-definition dual cameras, face recognition and video calling. Children find it convenient and fun, and parents can keep track of their children's whereabouts at any time.

Nowadays, many low-profile children's smart watches are selling well in major e-commerce platforms. 3 15 Information Security Laboratory conducted a special test on this.

The sales record of this children's smart watch is 654.38+ million+. The tester bought one for a child to wear. The tester disguised the downloaded malicious program QR code as a lottery game and posted it at the child's door.

Such a lottery game can easily attract children to scan the code experience. In this way, malicious programs can easily enter children's smart watches.

At the same time, engineers have realized the remote control of this watch.

Every time a child draws a lottery, the malicious program will automatically package the important information in the watch, such as location, address book, call record, etc., and send it out in real time.

After the lottery game, engineers can still locate the children in real time, continuously collect the children's movement tracks, and easily delineate the children's activities.

By collecting the child's location information many times, the tester can infer from the background that her home is actually very close to the school, about two or three hundred meters, and it can be reached within five minutes' walk.

After returning home, the child chatted with his grandmother. By calling the microphone in the watch, the engineer in different places clearly knows the conversation.

After supper, the children are doing handicrafts at their desks. The child's every move is under control.

Why does this kind of children's smart watch, which is deeply loved by children and trusted by parents, become a pair of eyes that peep at all times, and go hand in hand?

Testers found that the root cause was that its operating system was too old.

This watch actually uses the Android 4.4 operating system, without any rights management requirements, and it has been nearly 10 years. And its latest version has been updated to Android 12.

As long as the App applies for any permissions, the Android 4.4 operating system will give the app any permissions, and there will be no links to inform users and obtain user authorization.

On such a low version of children's watch, after installing various apps, you can take away various sensitive permissions such as positioning, address book, microphone and camera without user authorization. This means that they can easily obtain private information such as children's location, facial images and recordings.

In order to reduce costs, these manufacturers chose a lower version of the operating system. However, it ignores the safety of users and brings endless troubles to consumers.

Also on the Android phone, when installing the App, the system will have a clear prompt: Does the user agree with the authorization?

Now everyone attaches great importance to the supervision of mobile App. Technically speaking, many standards on mobile terminals are completely applicable to intelligent terminals. It may still be the problem of insufficient attention, which makes such smart terminals become the hardest hit areas for personal information protection.

3 15 Information Security Lab also tested other low-profile children's smart watches.

This children's smart watch uses the operating system of Android 9 and looks relatively new.

When installing the App, the system will pop up a window to prompt whether to give permission. However, once the user refuses authorization, the App will flash back and refuse to provide any service.

For example, the tester opens an application called "Weather". A pop-up window will appear asking the user about the storage rights. If you only check the weather, you don't need to store and read the user's photos, choose to refuse. Then the application asks for the right to make a phone call, which is also an unnecessary right, or refuses. It is also unnecessary to ask for location permission again, and it is also rejected. Then the application flashes back immediately.

In this way, consumers have only two choices, either not using them at all or exchanging all rights for services.

App compulsory claim is very harmful. Because in order to get the service, once the user gives permission, the information in the watch will be handed over. Children's geographical location, photos, videos, total memories and other privacy will be collected, and children's safety risks can be imagined.

3 15 exposure low-profile children's smart watch: walking voyeurism 2 "real-time positioning, face recognition, video call", the hardware functions of children's smart watches are becoming more and more powerful. On the evening of March 15, CCTV's 3 15 party exposed low-grade children's smart watches, which can take away all kinds of sensitive rights such as positioning, address book, microphone and camera. Without the user's authorization, children's private information is easily obtained and they become "voyeurs" walking.

Many low-profile children's smart watches are very popular in major e-commerce platforms. 3 15 Information Security Lab tested a children's smart watch with a sales record of 65,438+10,000 yuan. At the same time, the engineer implanted a malicious program into the smart watch to realize remote control of the watch. In this case, every time a child draws a lottery with a smart watch, the malicious program will automatically package the sending location, address book, call record, etc. In real time.

Through remote control, children's movement trajectory can be continuously collected and the range of activities can be easily delineated. By collecting location information many times, the remote controller infers the location distance between home and school, and calculates the walking time. Because the smart watch has a camera function, the child's every move will be recorded at any time by this low-profile smart watch.

Why can these low-profile smart watches easily obtain private information? The reason is that the tester found that the operating system was too old. This watch uses the Android 4.4 operating system, without any rights management requirements. It was made nearly 10 years ago, and its latest version has been updated to Android 12.

As long as the APP applies for permission, the system will pass without notifying the user or obtaining the user's consent. 3 15 Information Security Lab further tested the low-profile smart watch, and the system version is higher, such as an Android 9 operating system. When the pop-up window prompts for authorization, the APP will flash back and refuse to provide any service.

From the manufacturer's point of view, in order to reduce the cost, we choose a lower version of the operating system, but ignore the safety of users. He Yanzhe, an expert in 3 15 information security laboratory and deputy director of the evaluation laboratory of Netan Center of China Institute of Electronic Technology Standardization, said in an interview with CCTV 3 15 that the state now attaches great importance to the supervision of mobile APP. Technically, the supervision requirements of mobile terminals are also fully applicable to smart terminals, but such smart terminals are still the hardest hit areas in terms of personal information protection.

3 15 exposure low-profile children's smart watches: walking voyeur 3 can locate, take photos and make phone calls ... children's smart watches are becoming the standard for more and more underage students. However, this fast-growing market segment is chaotic.

Last night, the CCTV 3 15 party exposed the huge security risks of low-grade children's smart watches, and even became a "walking voyeur", and malicious programs could easily enter the watches.

Sina Technology found in an e-commerce platform that a large number of low-priced cottage children's watches are flooded with them, and even a so-called best-selling children's watch can be bought in 9.9 yuan. There is no doubt that the safety hazard of this inferior product will be even greater.

The system is outdated and has low security.

According to CCTV's 3 15 party report, 3 15 Information Security Lab conducted a special test on children's smart watches with a sales record of 654.38+10,000 on an e-commerce platform.

Testers disguised the QR code downloaded by malicious programs as a lottery game. After children scan the code through this watch, malicious programs can easily enter the watch. Engineers can remotely control this watch, and it is easy to collect location information, monitor call records and peek at videos.

The fundamental reason behind this is that the operating system of this product is too old. The report pointed out that this watch actually uses the Android 4.4 operating system, without any rights management requirements, and it has been nearly 10 years since. As long as the App applies for any permission, the system will give the app any permission and will not give the user any notice. In this way, the App can take away a variety of sensitive permissions such as positioning, address book, microphone and camera without user authorization.

There is no doubt that watch manufacturers choose a lower version of the operating system for the sake of reducing costs. However, the security of this system is greatly reduced, which brings endless troubles to children.

In fact, the issue of App permissions of smart phones has long been concerned by relevant departments and users.

On the eve of the 3 15 party, the Ministry of Industry and Information Technology just launched a "look back" on the rectification of App's infringement of users' rights and interests. There are still 14 problems in the random inspection of the app found last year, and the relevant app is required to complete the rectification before March 2 1.

According to the data released recently by Xiao Yaqing, Minister of the Ministry of Industry and Information Technology, the Ministry of Industry and Information Technology has detected 2.08 million apps in 202 1, notified 549 apps that were illegal, and removed 5 14 apps that refused to be rectified.

But overall, the terminals involved in these apps are mainly mobile phones and tablets, and the extremely subdivided but very important terminal of children's smart watches has been ignored.

The lowest proliferation of cottage products is only in 9.9 yuan?

In fact, in addition to the low-priced operating system exposed at the 3 15 party, a large number of low-priced cottage children's watches are also flooding, which brings greater security risks.

Sina Technology saw on an e-commerce platform that if you use "children's watches" as a keyword search, you will see many low-priced products, which are basically below 100 yuan.

Sina Technology ordered a product with the keyword "Huawei mobile phone is applicable". The spike price is only 43 yuan, and 34,000 pieces have been sold. This watch can be connected to WeChat, QQ, Tik Tok and other apps in WiFi download promotion, and also supports functions such as calling, video calling, code scanning payment, GPS positioning and face recognition.

However, this watch is not made by Huawei, but a brand called Puxi, which is undoubtedly rubbing the heat and inducing users to buy it.

In the best-selling list of smart children's watches on the e-commerce platform, the first place turned out to be a product with a price of 14.8 yuan. This product takes "the genius of primary school students" as the key word and deliberately rubs on the brand of "Little Genius", and has sold 65,438+10,000+pieces.

And the bestseller list only needs 9.9 yuan's "Genius of Primary School Students" watch. The actual brand is Kim Jong, which has sold 32,000 watches. In the comments, some users said that "it is very poor, and the sound quality of the call is not good or clear"; Some users also said that "it can't be used at all, it's just a display, it can only be switched on and off, and nothing can be done."

On the one hand, these low-priced cottage children's watches may have quality problems, on the other hand, the safety problems when downloading apps are even more worrying.

Manufacturers flood into the industry to be standardized

Although children's smart watch products are relatively subdivided, the rapidly growing market space has attracted more and more well-known enterprises.

According to public statistics, the population of children under 0/4 in China/KLOC-0 has been maintained at about 250 million in the past 10 years. With the liberalization of the three-child policy, the potential users of children's smart watches have increased again.

According to the data of Huajing Industry Research Institute, the demand for children's smart watches in China has maintained rapid growth in recent years, reaching 29.9 million in 2020.

What is the potential of children's smart watches? According to the market share report of 202 1 smart watches recently released by research company Counterpoint, imoo (BBK) ranked fourth in 202 1 with a market share of 5.2%, second only to Apple, Samsung and Huawei, mainly relying on children's smart watch products.

This huge market has also attracted the entry of technology giants including 360, Huawei and Xiaomi. In 20021year, Huami Technology, which focuses on adult smart watches, also announced its entry into the field of children's smart watches.

But on the whole, at present, the shipments of children's smart watches in China are mainly concentrated in the stalls below 800 yuan, and the competition at low prices is fierce; At the same time, children's smart watches are mainly owned by families in first-and second-tier cities. In third-and fourth-tier cities and rural areas, the popularity of children's smart watches is still very low, which also provides living space for many low-priced cottage products.

At present, in the children's smart watch market, in addition to the security problems exposed by CCTV 3 15 party, some people in the industry also expressed their concerns about health problems.

Wang Huang, CEO of Huami Technology, once said that more and more children's watches are strengthening learning attributes and adding some cultural knowledge learning and puzzle game functions to children's watches, which makes some parents, including themselves, feel uneasy.

First of all, are children's watches really suitable for learning knowledge? The original intention of giving children's watches the learning function is of course beautiful, but the reality is skinny. Let children study on a small screen of one or two inches, learning may not be successful, and their eyesight plummets.

Secondly, are children really learning knowledge with children's watches? Are high-tech products on the market helping children or delaying them? Manufacturers have achieved great commercial success by pleasing parents and children at the same time, but no one has ever studied how many children are nearsighted behind this. It has become a just-needed children's watch and may become the next myopia killer.

The exposure of the 3 15 party put the safety of children's smart watches in the spotlight.

When more and more enterprises enter this market segment because of market share and profit attraction, they should not only consider interests, but also consider social responsibility.

This may require the joint efforts of relevant departments, watch manufacturers and App developers. Equally important, parents need to keep their eyes open when buying children's smart watches to avoid being cheated by low-priced cottage products.