Things Your Robot Vacuum Might Know About Your House
Your robot vacuum knows more about you and your household than you might think.
rd.com, Getty Images (2)
Your robot vacuum normally runs around your home without much of a fuss. Some people even name their robo vacs and feel like they are part of the family. But it’s important to remember that like other smart devices around your home, robot vacuums are connected to the Internet — and that can pose a security risk.
While there is no evidence anyone has maliciously hacked a robot vacuum, and there is no evidence a manufacturer is selling data collected from your vacuum, the potential for problems exists.
Just about every robot vacuum maps your home as it cleans so it can progressively become more efficient at its job. This can be an issue.
A map of the inside of your home can be telling. From a simple map, someone could learn how big your house is, how much and what kind of furniture you own, and more, according to Heinrich Long, privacy expert at Restore Privacy.
Plus, these are the things you should never, ever vacuum.
Why Data Collection Matters
Data collected from your robo vac can be used in a lot of ways. A map of your home can be important information for a hacker who plans on robbing you, for example. They can also get the GPS coordinates of your house. “If you have a WiFi-connected Roomba it can definitely report back your home’s exact location,” said Burton Kelso, a tech and cybersecurity expert.
Hackers, or the manufacturer, may also decide to sell the data they collect to an advertiser. Personal lifestyle information is a huge part of creating targeted ads. That can be a big breach of privacy.
How You Can Stop Data Stealing
There are two ways your data can be collected and shared. A hacker can gain access to your robot vacuum’s app through malware on your phone and gather information or control the bot. The manufacturer also collects the information and can share or sell it to advertisers.
There are a few things you can do to prevent your data from being collected. One big tip multiple security experts shared is using your vacuum offline. That means running the vacuum with just its remote control or the on-board buttons, not the app. This way, the robot is not connected to the Internet, and information can not be accessed. One problem: If you do that, the more useful features of your vacuum — like scheduling a cleaning — won’t be available anymore.
The easiest way to disconnect your vacuum from WiFi is to do a factory reset. To disconnect a Roomba, hold down the three buttons on your vacuum for 15 seconds. The process differs for each vacuum, so be sure to check the manual for the proper way to perform a factory reset.
If you love robotic creations, check out these 19 awesome DIY options.
Alternatives for Disconnecting From WiFi
There are some alternatives to completely disconnecting your robot vacuum from your WiFi.
“The best way to keep yourself safe and to avoid security attacks is to make sure that the vacuum’s software is regularly updated,” says Veronica Miller, cybersecurity expert at VPN Overview. “This removes any bugs that may be exploited by hackers to gain access.” It won’t prevent the manufacturer from gathering data, but at least it will stop hackers.
You can typically do this by going to the vacuum’s app, opening the settings and choosing the update option. For example, to update an iRobot, you would open the iRobot Home App and select “Settings,” then the “About (robot name)” option. If the robot has not been updated, you’ll see an option to request an update.
If you’re not sure how to update your particular brand of robot vacuum, be sure to contact the manufacturer’s customer service department for instructions.
Use Malware to Prevent Hacks
Also, be sure that your phone is malware-free to prevent hacks. Apps like Malwarebytes and Kaspersky Mobile Antivirus can make preventing and removing malware simple.
Finally, use different passwords for all of your smart home devices including your vacuum cleaner. Cybercriminals count on people using the same password for all their online accounts. If one of your accounts gets hacked, the hacker can easily access your other accounts using that password.
If you have a problem remembering different passwords for your online accounts, use a password manager, such as the one built into your favorite web browser. Kelso also suggests a program like LastPass that will store all of your online account passwords. Also, be sure to make your password complex, mixing numbers, symbols and letters.