CNET, TheWirecutter, or PCMag generally focus on device functionality – does it actually blend – and not whether the device is secure. It’s also tough for dedicated security reporters such as KrebsOnSecurity to keep up-to-date with a name and shame strategy of listing makers of unsecure devices and their default passwords.
In short, there is some information available on the internet about specific vulnerabilities, but it is limited in its scope and breadth.
Just how a person falls into the sales funnel also impacts access to this technical information: The three major options are shopping at a brick and mortar store, directly via the vendor, or at an online market.
If shopping at a physical store, the potential customer is reliant on the salesperson for the latest technical information about each product. While that can happen, I doubt that it will happen consistently.
Buying directly from the vendor online will also limit access to bad news. Remember those issues with Ring leaking WiFi login details and its connecting cameras into a map for the police? The response might be, if you are lucky, a defensive post in the company blog.
Then there are online marketplaces like Amazon. The trend is for people do their shopping within Amazon, looking up generic terms such as security camera and Amazon proposing a range of alternatives. This positions the potential customer to wade through the reviews, looking at the mass number of reviews and their distribution – from highly negative to ecstatic — before putting the product in the basket. Just to point out, that Cacagoo camera has won four stars and an Amazon Choice rating. In addition, this is assuming that the e-marketplace is not trying to skew search results towards specific products.
The lack of information means that you as a potential gadget buyer needs to have a four-step plan to protect the security of your home network and personal data.
Keep calm, stay informed, and vote with your wallet.