A smartwatch designed for children, the Enox Safe Kid One, was recalled by the EU over data privacy concerns, as reported by ZDNet. It was discovered that the watch, which is equipped with a GPS, microphone, and speaker to make calls and send SMS texts, could be easily hacked by third parties. It doesnâ€™t appear that the watch was ever sold in North America, and although itâ€™s not the first time that childrenâ€™s toys have been found to have security holes, this marks the first time that the European commission has stepped in with a product recall.
The smartwatchâ€™s security issues were brought to light in a RAPEX (Rapid Alert System for Non-Food Products) report, which warned that the watchâ€™s companion Android app had â€śunencrypted communications with its backend server,â€ť which enabled â€śunauthenticated access to data.â€ť This opened up data like location history, phone numbers, and the serial number to malicious actors, who could easily find and change the data. Once hacked, a stranger could potentially use the watch to make calls to a child, find the childâ€™s location, or conceal their true location from their parents.
Smartwatches for kids have been banned in Germany since 2017, when the countryâ€™s telecommunications agency Bundesnetzagentur classified the devices as â€śprohibited listening devices.â€ť The European Consumer Organisation (BEUC) also published a report in 2017 about the privacy concerns surrounding kidsâ€™ smartwatches. Todayâ€™s news likely wonâ€™t be the last time the European commission sends out another warning about security flaws, or orders for a recall.