Creepy employees<p>> In January 2018, a male employee used his broad access rights to spy on a female colleague through her videos. Using her email address as a look-up mechanism, the employee identified his female co-worker’s device and watched her stored video recordings without her permission.<p>Weak security which they were aware of<p>> Ring employees wrote of the 2017-2018 attacks: “Unwittingly, we aid and abet those [hackers] who breached the data by not having any mitigations in place.” In this document, the author notes that Ring permitted “thousands of requests [for account access] per second” from a single IP address (i.e., a single user), rather than an appropriate “half dozen per day.” The author notes, “If we can slow the attacker down, they will definitely look elsewhere, as we’ve destroyed their economic model of cheap and fast bulk verification of stolen user account credentials.”