The ring is warning that a backand update is responsible for customers after seeing an increase in unauthorized equipment logged into its account on 28 May.
On 28 May, many ring customers saw unusual equipment logging into their accounts from various places around the world, asserting them that their accounts were hacked.
Last week, Ring posted on Facebook that they “know about a bug, which incorrectly displays pre -login dates as May 28, 2025.”
Ring also stated its status page that these unauthorized logins are due to the bug in a backnd update that was released.
“We are aware of an issue where information is being incorrectly displayed in the control center,” Ring’s position reads page,
“This is the result of a backnd update, and we are working to solve it. We have no reason to believe that this is the result of unauthorized access to customer accounts.”
These false login entries were all Date 28 May, 2025Which gives the statement of rings for some weight that it was a backnd issue rather than a global hacking incident.
However, customers are not purchasing the clarification of the ring, reporting that they saw unknown tools, strange IP addresses and countries that they had never listed on the list of their authorized customer equipment, so they could not be the previous login.
a customer X posted to XWhile sharing a screenshot of login from a device called “Durbity iPhone”.
“It seems interesting that it’s just a” bug “, yet one of my many unknown logins from that date was a log from Spain … I am in Texas, so pre -equipment doesn’t just look like a bug or log on just a bug or log because I can assure you that I have never gone to Spain,” another customer posted on Facebook.
Amazon is hiding a real security phenomenon, carried forward with the fact that a backand update should be easy to reverse. Nevertheless, three days later, people are still watching logins from devices they do not recognize.
To make cases worse, some users report to look at live visual activity during time when no one in the house has access the app, and no other reports. Safety alert Or the multi-factor authentication indicates when adding new devices.
Source: Bleepingcomputer
Although this wrong device can be a bug displaying the name and login, the ring should clearly explain it, as it is instead it was said that it was the user’s back login.
Bleepingcomputer contacted the ring to inquire about the situation and why are people looking at devices and countries that they never have ownership or not, and thus do not have previous logins.
Ring users should review the appropriate equipment from the app Control center , Authorized customer equipment Section. If any device or login is not recognized, they should be removed immediately.
Changing your account password and enabling two-factor authentication from account settings would also be prudent.
Bleepingcomputer will update our story with any response from the ring.
Include emerging hazards in real time – before they affect your business.
Learn how cloud detection and response (CDR) gives security teams the required edge in this practical, no-nonsense guide.
