"As already witnessed in the initial test of fitness wristbands last year, many manufacturers are also committing similar errors in the current test," the report states. "They often don't pay sufficient attention to the aspect of security. ... These products can be tracked rather easily, use inconsistent or no authentication or tamper protection, the code of the apps is not sufficiently obfuscated [to secure data], and data traffic can be manipulated and monitored with root certificates."
Xiaomi devices were cited as perhaps the worst offender, storing all data unencrypted on the device.
By contrast, the report stated, the Apple Watch is "almost impossible to track" and mostly uses encrypted connections to transmit data.
