Smart locks promise the security of a traditional lock without the need to carry around a key. Most can be unlocked with a mobile app or an RFID-equipped card you can store in your wallet. Unfortunately, they're also pretty easy to hack open. The office of New York's attorney general, Eric T. Schneiderman, announced a settlement today with one such smart lock manufacturer. Utah-based Safetech Products has agreed to encrypt all of its smart lock passwords, electronic keys and other credentials within its locks, prompt users to change the default password upon initial setup and establish a more comprehensive security program.
Safetech makes both padlocks and door locks, each available on Amazon. According to the New York AG's office, independent security researchers found that the company's locks did not secure passwords or other security information in its locks, which left customers open to hacking and theft.