← Smart Home
F

Wemo Smart Home

Fail
Belkin · 🇺🇸 United States · WiFi + Bluetooth
PolicyApp PermissionsNetwork TrafficFirmwareRegulatory
Technical details
App: Wemo
Manufacturer: Belkin

⚠️ The bottom line

Researchers found a bug that lets hackers take over Wemo smart plugs remotely. Belkin's response? "End of life — we won't fix it." Millions of plugs still plugged into walls in homes everywhere. The company that sold you the device decided it's not worth patching. Your smart plug is now an unpatched entry point to your home network, permanently. When you buy a Wemo plug, there is no label saying "we will stop patching this in 2 years." You find out when a security flaw appears and Belkin says "end of life." A smart device that stops getting security updates doesn't stop being smart — it becomes a permanently vulnerable computer plugged into your wall.

Legal jurisdiction
🇺🇸 United States (headquarters)
CLOUD Act read more →
US govt can demand your data from this company even if stored overseas
FISA §702 / PRISM read more →
NSA collects stored emails, photos, messages without individual warrants
Geofence warrants read more →
Police can demand location data for everyone near a crime scene
Spying
0/4 N/A
Is someone spying on me?
Data Sharing
0/4 N/A
Who gets my data?
Security
3/4 HIGH
Is it actually secure?
Honesty
0/4 N/A
Can I trust what they say?
CONFIGURE High-risk areas that can be partially mitigated with settings changes.
2Contradictions
1Critical
1High
0Medium
2Sources
Findings by concern
Security 3/4 HIGH 2 findings
⚠️ criticalmarketing vs third party research
Researchers found a bug that lets hackers take over Wemo smart plugs remotely. Belkin's response? "End of life — we won't fix it." Millions of plugs still plugged into walls in homes everywhere. The company that sold you the device decided it's not worth patching. Your smart plug is now an unpatched entry point to your home network, permanently.

What they claim: Wemo promotes smart home automation with easy setup and reliable control

What we found: Security researchers have repeatedly found critical vulnerabilities in Wemo products. In 2023, a buffer overflow vulnerability (CVE-2023-27217) in the Wemo Mini Smart Plug V2 allowed remote code execution on the device. Belkin stated it would not fix the vulnerability because the product was "at end of life" — despite millions of units still in active use in homes.

⚡ highmarketing vs third party research
When you buy a Wemo plug, there is no label saying "we will stop patching this in 2 years." You find out when a security flaw appears and Belkin says "end of life." A smart device that stops getting security updates doesn't stop being smart — it becomes a permanently vulnerable computer plugged into your wall.

What they claim: Wemo describes devices as receiving regular firmware updates for security

What we found: Wemo devices have a history of abandoned firmware support. Multiple product lines have been discontinued with known security vulnerabilities left unpatched. Belkin provides no clear end-of-support timeline at purchase, meaning customers discover their devices are unsupported only when a vulnerability is disclosed and Belkin refuses to fix it.

Sources