Skip to main content

SimpliSafe burglar alarms may not be keeping you safe at all

A burglar alarm system has one job, and one job only — to sound an alarm when intruders venture into your property. Unfortunately, SimpliSafe has failed its singular task in rather epic proportions. According to reports, the home alarm setup is riddled with an “unfixable flaw” that renders it practically useless when it comes to actually protecting you and your valuables from an intruder who is familiar with the flaw. The security system, used in over 200,000 homes, is cheaper than many on the market, but this is a real case in point of getting what you pay for. So when it comes to safety, please don’t be cheap — or at the very least, stay away from SimpliSafe.

According to a blog post published Wednesday by IOActive researcher Andrew Zonenberg, a clever and digitally savvy thief would be able to disable a SimpliSafe alarm relatively easily, and from quite a distance away. In fact, intruders could be up to 100 feet removed from your home and still be able to deactivate your security system, creating an in for themselves. More frightening still, Zonenberg writes, “This attack is very inexpensive to implement — it requires a one-time investment of about $250 for a commodity microcontroller board, SimpliSafe keypad, and SimpliSafe base station to build the attack device.” So basically, the intruder would be able to use the security system to … disarm itself.

Recommended Videos

So is there any solution to this massive flaw? Apparently not, the security expert writes.

“Unfortunately, there is no easy workaround for the issue since the keypad happily sends unencrypted PINs out to anyone listening,” Zonenberg says. “Normally, the vendor would fix the vulnerability in a new firmware version by adding cryptography to the protocol. However, this is not an option for the affected SimpliSafe products because the microcontrollers in currently shipped hardware are one-time programmable. This means that field upgrades of existing systems are not possible; all existing keypads and base stations will need to be replaced.”

Yikes.

SimpliSafe has responded to IOActive’s criticisms by noting, “While any wireless system is susceptible to this type of attack from a sufficiently savvy and motivated intruder, our systems can be backed up with a land line or an Internet connection for no additional cost.” The company also claims that the sort of attack described by the blog “represents such a small percentage of total break-ins that the FBI does not even keep a count.”

SimpliSafe continues, “This is because the majority of break-ins are a quick forced entry and not the sophisticated type of attack that requires diligent planning as well as highly illegal and cost-prohibitive equipment. Assuming an intruder has the requisite technology, he would need to know the frequency ranges he needs to jam, and also know the layout of your home beforehand, as he would have to avoid motion detectors even in the unlikely event that he bypassed a door sensor.”

So better hope your burglars aren’t so tech savvy, or replace your alarm system.

Lulu Chang
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
Tineco carpet cleaner at lowest-ever price for Prime Day — here’s how to save more
A man using the Tineco Carpet One Cruiser Smart Carpet Cleaner.

Not all vacuum deals will be able to provide in-depth cleaning for your carpet. You're going to need something more specialized, and we highly recommend the Tineco Carpet One Cruiser. From its original price of $699, it's available from Amazon's Prime Day for its lowest-ever price of $489, but you can get an additional 5% off with the checkout code TIN25PDPR. That means you'll only have to pay $465 for this smart carpet cleaner, for total savings of $234, but you'll need to act fast as we're not sure if the stocks that are up for sale will last until the final minutes of the shopping holiday.

BUY NOW

Read more
Tineco vacuum nearly $300 off for Prime Day — use this code for extra savings
The Tineco Floor One Stretch S6 cordless vacuum cleaner cleaning a spill.

In one of the most attractive vacuum deals that you can shop for Prime Day, Amazon has slashed the Tineco Floor One Stretch S6 to its lowest-ever price of $319 from its sticker price of $599. However, we've got a code for you to be able to get the cordless wet-dry vacuum cleaner with an extra 5% off — just enter TIN25PDPR during the checkout process so that you'll only have to pay $303, for total savings of $296. That's an excellent offer that you wouldn't want to miss, and you better hurry if you want to take advantage of it as it may not remain available until the end of the shopping holiday.

$303 at Amazon

Read more
Tineco’s docking vacuum has a special Prime Day price, but you can get it cheaper
A Tineco Pure One next to its charging base.

Vacuums feel like they're getting more and more expensive, and not just robot vacuum and mop combos, but ordinary hand vacs. You can go to Walmart and see bagged, corded vacuums that cost hundreds of dollars. It doesn't have to be that way. Tineco's Pure One vacuum brings power and convenience for the same price that other vacuums have, but with new features instead of going backwards into the world of cords and bags. Usually $459, it is down to $319 for Prime Day (that's a savings of $140 already) and we're happy to report you can get an extra 5% off with the code TIN25PDPR on Amazon. Tap the button below to see the vacuum yourself and snag this great deal, or keep reading for what makes this vacuum truly unique.

BUY NOW

Read more