Unfortunately, this deal is no longer available
Smart Plug, Meross WiFi Smart Socket Compatible with Alexa Google Home (2 Pack) £14.86 @ Sold by WiFi Home and Fulfilled by Amazon
725° Expired

Smart Plug, Meross WiFi Smart Socket Compatible with Alexa Google Home (2 Pack) £14.86 @ Sold by WiFi Home and Fulfilled by Amazon

£14.86£19.9926%Amazon Deals
30
Posted 24th Feb

This deal is expired. Here are some options that might interest you:

Smart Plug, Meross WiFi Smart Socket Compatible with Alexa Google Home SmartThings Voice Control No Hub Required (2 Pack)

Reliable Connection: Are you annoyed by high WiFi disconnection rate? Mediatek Iot chipset enable meross plug capable of longer WiFi connection range and lower disconnection rate than most of its competitors. It works with any 2. 4GHz or dual band WiFi router.
  • Safety Design: Meross smart plugs featured with abs fire-retardant housing, overload protection circuit, sliding safety cover design. Passed EC, ROHS, WEEE certification. Meross has always attached great importance to the product safety.
  • Voice And App Control: Meross smart plug works with Alexa/Echo, Google Home/Assistant for voice control directly. Compatible with SmartThings, IFTTT. No hub required. Free app is available for remote control. Disabled and elderly people-friendly, keep them away from risks and accident.
  • Ready For Smart Home: time to have a smart home and customize a schedule of your devices. timer and schedule function enables electronics such as lamps, coffee machine, water heater, thermostats, fans, switches, humidifier on/off automatically based on your life routine.
  • 24/7 Technical Support: If you encounter any product issue, or contact the seller directly. we will response 24/7 with proper solution.
Community Updates

Groups

30 Comments
Good that these work with dual band routers, many don't.
They work with dual band routers but only at 2.4Ghz band. Had two for a few years and always been reliable and app is pretty good but mainly use via Alexa
Can you set a timer on these?
Returned a set of Meross smart plugs yesterday, same as these but also with energy monitoring. The Samsung Smartthings integration seems to be non-existent (It says to install the app within Smartthings, and shows some screenshots that do not match up at all, and could not find Meross in the lists in Smartthings at all), and the energy monitoring didn't have the ability to have a graph, or show peak power over time.

They also require registration with Meross to configure them, and entering your wifi password into their app after registering. Android has ways to send the data securely to devices, which could have been used instead; I wonder if they are recording everyones wifi passwords? And what happens if Meross stop supporting them? If they are wifi they should just have a web portal for configuration.
I would bet these or something identical will be £9.99 soon
Hearnia_2K24/02/2020 22:59

Returned a set of Meross smart plugs yesterday, same as these but also …Returned a set of Meross smart plugs yesterday, same as these but also with energy monitoring. The Samsung Smartthings integration seems to be non-existent (It says to install the app within Smartthings, and shows some screenshots that do not match up at all, and could not find Meross in the lists in Smartthings at all), and the energy monitoring didn't have the ability to have a graph, or show peak power over time.They also require registration with Meross to configure them, and entering your wifi password into their app after registering. Android has ways to send the data securely to devices, which could have been used instead; I wonder if they are recording everyones wifi passwords? And what happens if Meross stop supporting them? If they are wifi they should just have a web portal for configuration.


Not impossible just extremely unlikely. Automatic password hashing is standard.

If meross were attempting espionage/ surveillance it's likely that it would be a third party using them unknowingly as a puppet but then you could also say the same about most half arsed UK companies to which you pass your IDs and credit card data to on a regular basis.

It's extremely unlikely this company store unhashed passwords as it would likely involve a scheme worthy of serious jail time.

That said as a rule I tend to avoid giving incompetent companies the keys to the fort. However, if you don't want your data spied on put a VPN on your devices and it will be encrypted pre router.

In a nutshell though it's extremely unlikely any company would put an app on the play store that stored unhashed router passkeys and relayed them to the company.

I'm not an expert on play store but there's probably a Google heuristic algorithm that would detect that behaviour as a matter of course, as well as a community of skilled people and professionals who break open these apps for work or play so the company would be incredibly incompetent to commit commercial suicide that way.
Edited by: "muppetrider" 24th Feb
khamisa1024/02/2020 21:44

Can you set a timer on these?


Yes via the app. You can schedule time on/off or have them automatically turn off after being switched on for a set time... useful on something like a heater where you don’t want to forget and leave it on.
pete_10124/02/2020 23:47

Yes via the app. You can schedule time on/off or have them automatically …Yes via the app. You can schedule time on/off or have them automatically turn off after being switched on for a set time... useful on something like a heater where you don’t want to forget and leave it on.


Cool, thank you
I bought two of the energy ones to monitor my fridge, it seemed to be reliable as fridge compressors tend to be a tricky load to switch, and the little graphing log was useful
Been running a few of these for about 6 months or so. Easy to set-up and configure. Used with Alexa. Hae been 100% reliable. Heated.
Do these work with home assistant?
using these with alexa, really good bit of kit, so much so I went for the meross garage door opener too! The app is really straightforward and easy to use.
amazon.co.uk/Mer…FS4


a fiver more, the 4 socket extension, individual on/off, seems good value where an extension socket is more suitable than wall sockets
muppetrider24/02/2020 23:24

Not impossible just extremely unlikely. Automatic password hashing is …Not impossible just extremely unlikely. Automatic password hashing is standard. If meross were attempting espionage/ surveillance it's likely that it would be a third party using them unknowingly as a puppet but then you could also say the same about most half arsed UK companies to which you pass your IDs and credit card data to on a regular basis.It's extremely unlikely this company store unhashed passwords as it would likely involve a scheme worthy of serious jail time.That said as a rule I tend to avoid giving incompetent companies the keys to the fort. However, if you don't want your data spied on put a VPN on your devices and it will be encrypted pre router. In a nutshell though it's extremely unlikely any company would put an app on the play store that stored unhashed router passkeys and relayed them to the company. I'm not an expert on play store but there's probably a Google heuristic algorithm that would detect that behaviour as a matter of course, as well as a community of skilled people and professionals who break open these apps for work or play so the company would be incredibly incompetent to commit commercial suicide that way.


I agree it's unlikely, but the fact I have to register is bad enough, then they ask me to enter my wifi password, rather than pulling it from the device automatically? Also it forced me to enable Location, so now they would have my location, wifi name, and password.It claims you can configure it without sharing location data, but it couldn't detect the smart plug at all, even if I manually connected to the plugs Wifi network, and returned to the app, as mentioned.

The Google Play store doesn't vet apps like Apple do, so people can upload pretty trash apps if they want.

It's all unlikely, but they are forcing users to enter enough data that it could become very useful if you sidelined in building a map of wifi locations and login details. And, when they could sync the WiFi data using Google APIs, and shouldn't need GPS, and definitely should not require account creation, then this all starts to look a bit fishy.

Regardless, for me at least it didn't work anyway; I have a Samsung Smartthings, and they are supposed to have proper integration, and that simply does not seem to be the case; I have no way to add them to my Smartthings setup, so for me they were useless.
Hearnia_2K25/02/2020 12:47

I agree it's unlikely, but the fact I have to register is bad enough, then …I agree it's unlikely, but the fact I have to register is bad enough, then they ask me to enter my wifi password, rather than pulling it from the device automatically? Also it forced me to enable Location, so now they would have my location, wifi name, and password.It claims you can configure it without sharing location data, but it couldn't detect the smart plug at all, even if I manually connected to the plugs Wifi network, and returned to the app, as mentioned.The Google Play store doesn't vet apps like Apple do, so people can upload pretty trash apps if they want.It's all unlikely, but they are forcing users to enter enough data that it could become very useful if you sidelined in building a map of wifi locations and login details. And, when they could sync the WiFi data using Google APIs, and shouldn't need GPS, and definitely should not require account creation, then this all starts to look a bit fishy.Regardless, for me at least it didn't work anyway; I have a Samsung Smartthings, and they are supposed to have proper integration, and that simply does not seem to be the case; I have no way to add them to my Smartthings setup, so for me they were useless.


The play process I was hypothesising about was a simple automated algorithmic test upon upload to flag abuse (very similar to AV) although I have no evidence for it existing, but as it's a significant interest I'll explore further and hopefully remember to get back to you; because Google certainly have the ability to run tests regarding proper data hashing of apps on their store but that of course doesn't mean they have implemented and I'm interested in asking questions to the right people as to why such a simple common sense test would not be implemented.

I totally agree I have no evidence for it existing at this point. That said it's not too difficult for your regular AV experts and pen testing guys to discover although of course that's not a guaranteed security.

I agree the software implementation seems crappy, but probably more crappy than malicious.

And to be honest, as much as it sucks, ever company and their mom has your location data unless you've taken a whole long list of safeguards. One of which is to get an app to give bogus location data to nosey apps.

It's highly probable though that this app is using location data for smart related purposes regarding the many algorithms and possible hub related bits, implemented or not, in the API.

I'd be surprised if there was any smart hub on the market that didn't collect location data. In effect anything connected to the internet is sending network location data all over the place. For example, laptop location services work whether the laptop has GPS or 4G or not.. you probably don't need two guesses to know how.

Thousands of companies knowing the position of our equipment is pretty standard these days, and although reprehensible, the danger is more to society and our future as a whole rather than the individual.

So we have the choice of 'hooking into the matrix' with smart hubs and unregulated tat networks (from UK or China it doesn't matter) or being ultra secure at the cost of not using a whole world of tat for the limited benefit of not being another node in another network of millions of nodes.

Don't get me wrong, damage to society will be massive, but the immediate risk to the individual today is minimal; besides orchestrated data breaches the greatest danger is when tomorrow comes when this data is used against us in a different political climate by extremely powerful systems (state or rogue) far beyond today's technology.
muppetrider25/02/2020 13:16

The play process I was hypothesising about was a simple automated …The play process I was hypothesising about was a simple automated algorithmic test upon upload to flag abuse (very similar to AV) although I have no evidence for it existing, but as it's a significant interest I'll explore further and hopefully remember to get back to you; because Google certainly have the ability to run tests regarding proper data hashing of apps on their store but that of course doesn't mean they have implemented and I'm interested in asking questions to the right people as to why such a simple common sense test would not be implemented. I totally agree I have no evidence for it existing at this point. That said it's not too difficult for your regular AV experts and pen testing guys to discover although of course that's not a guaranteed security.I agree the software implementation seems crappy, but probably more crappy than malicious.And to be honest, as much as it sucks, ever company and their mom has your location data unless you've taken a whole long list of safeguards. One of which is to get an app to give bogus location data to nosey apps.It's highly probable though that this app is using location data for smart related purposes regarding the many algorithms and possible hub related bits, implemented or not, in the API.I'd be surprised if there was any smart hub on the market that didn't collect location data. In effect anything connected to the internet is sending network location data all over the place. For example, laptop location services work whether the laptop has GPS or 4G or not.. you probably don't need two guesses to know how.Thousands of companies knowing the position of our equipment is pretty standard these days, and although reprehensible, the danger is more to society and our future as a whole rather than the individual.So we have the choice of 'hooking into the matrix' with smart hubs and unregulated tat networks (from UK or China it doesn't matter) or being ultra secure at the cost of not using a whole world of tat for the limited benefit of not being another node in another network of millions of nodes.Don't get me wrong, damage to society will be massive, but the immediate risk to the individual today is minimal; besides orchestrated data breaches the greatest danger is when tomorrow comes when this data is used against us in a different political climate by extremely powerful systems (state or rogue) far beyond today's technology.


Would be interesting to hear back if you do find anything. I think it would require quite deep analysis of an application by Google to determine if it was going something wrong; it's hard for them to programmatically determine if certain data should or should not be sent.

For what it's worth, unless you count my IP address then I don't think that Samsung's Smartthings captures location data, without explicitly enabling those features, for things like geofencing. And, to be honest, I am happy sharing my location data with systems that ultimately give me something back as a result. I see no compelling reason why I would share my location data with a smart plug.

Anyway, if people are happy with the products requirements to create a Meross account, provide location data, and then share their wifi SSID and password, and don't plan to use it with Samsung Smartthings, then I think it's a good deal, and the product will work well. I guess another comment would be that these are quite big; you can't fit another plug next to it on a 4 way plug extension, at least I couldn't.
Hearnia_2K25/02/2020 13:41

Would be interesting to hear back if you do find anything. I think it …Would be interesting to hear back if you do find anything. I think it would require quite deep analysis of an application by Google to determine if it was going something wrong; it's hard for them to programmatically determine if certain data should or should not be sent.For what it's worth, unless you count my IP address then I don't think that Samsung's Smartthings captures location data, without explicitly enabling those features, for things like geofencing. And, to be honest, I am happy sharing my location data with systems that ultimately give me something back as a result. I see no compelling reason why I would share my location data with a smart plug. Anyway, if people are happy with the products requirements to create a Meross account, provide location data, and then share their wifi SSID and password, and don't plan to use it with Samsung Smartthings, then I think it's a good deal, and the product will work well. I guess another comment would be that these are quite big; you can't fit another plug next to it on a 4 way plug extension, at least I couldn't.


It's not hard to check password hashing it's extremely easy

A toaster can do it

Edit

The markers to break the secure (app private / internal) data flow are easy to identify programmatically and I'd be very surprised if Google (who effectively created android) don't do this on that pass hash /private data flow level at least as a matter of course as it seems a no-brainer.

That said I'll check and see if any of these assumptions are verifiable by the team.

Re: Samsung and data..

Regarding my statement about most smart tech companies collecting some kind of location data, yes Samsung definitely do. If they don't do it on ABC it's because the entire rest of the alphabet has it covered to redundance. Samsung definitely have location data, it's secured under t+c obviously otherwise they'd be breaking the law.
Edited by: "muppetrider" 25th Feb
mcek25/02/2020 10:14

https://www.amazon.co.uk/Meross-Outlets-Compatible-Assistant-Control/dp/B07NXSTQV8/ref=pd_bxgy_3/257-2726238-2734821?_encoding=UTF8&pd_rd_i=B07NXSTQV8&pd_rd_r=820ee121-335f-4aed-bf51-32c1217aefeb&pd_rd_w=icQJH&pd_rd_wg=T4Mp6&pf_rd_p=148e7d82-d2eb-4f39-97f3-14c199ca7ce5&pf_rd_r=HK7309BWBR1CBX74GFS4&psc=1&refRID=HK7309BWBR1CBX74GFS4a fiver more, the 4 socket extension, individual on/off, seems good value where an extension socket is more suitable than wall sockets


If only that had energy monitoring
I bought 2 a few months ago for £9.99 off eBay. Very good, although 'huge' plugs. Work fine with Alexa or Google Home. I use them to turn lights on and off.
thanks
Minstadave24/02/2020 21:19

Good that these work with dual band routers, many don't.



I run all my smarthome stuff on a seperate 2.4Ghz network any way.
miffyl24/02/2020 21:05

https://www.amazon.co.uk/dp/B07QX6CF46Also with energy monitor for £16.99.


Says 19.99 for me, did you have a code?
sammyantha12326/02/2020 13:19

Says 19.99 for me, did you have a code?


There was a £3 off tick box but it's gone now.
miffyl26/02/2020 14:15

There was a £3 off tick box but it's gone now.


Aah okay, thank you for clarifying.
I missed the boat!
Excellent devices
muppetrider25/02/2020 13:51

It's not hard to check password hashing it's extremely easyA toaster can …It's not hard to check password hashing it's extremely easyA toaster can do itEditThe markers to break the secure (app private / internal) data flow are easy to identify programmatically and I'd be very surprised if Google (who effectively created android) don't do this on that pass hash /private data flow level at least as a matter of course as it seems a no-brainer.That said I'll check and see if any of these assumptions are verifiable by the team.Re: Samsung and data..Regarding my statement about most smart tech companies collecting some kind of location data, yes Samsung definitely do. If they don't do it on ABC it's because the entire rest of the alphabet has it covered to redundance. Samsung definitely have location data, it's secured under t+c obviously otherwise they'd be breaking the law.


I'm not worried about the data being stored on my device securely, but instead because I have to enter the data into their app, and it takes location, then my wifi password and location could be uploaded from the app to the Meross platforms. The combination does not create a warm fuzzy feeling.

In terms of Samsung, yes, they probably do take it, but I don't think they take it from the SmartThings platform, which can be used on non-Samsung phones, or even without a phone (Might need one for intiial setup, I forget).
Can you use these with the smart life app?
Hearnia_2K27/02/2020 10:56

I'm not worried about the data being stored on my device securely, but …I'm not worried about the data being stored on my device securely, but instead because I have to enter the data into their app, and it takes location, then my wifi password and location could be uploaded from the app to the Meross platforms. The combination does not create a warm fuzzy feeling.In terms of Samsung, yes, they probably do take it, but I don't think they take it from the SmartThings platform, which can be used on non-Samsung phones, or even without a phone (Might need one for intiial setup, I forget).


It's irrelevant what platform Sammy got your data from. Once they have it duplication is redundant.

You keep repeating the same thing about your app, yes I know what you're trying to say. You're still missing the point. The point I keep explaining is regarding password hashing, please Google it if you want to understand. It means passwords on server are encrypted with a key they can't access.
Edited by: "muppetrider" 29th Feb
muppetrider29/02/2020 11:08

It's irrelevant what platform Sammy got your data from. Once they have it …It's irrelevant what platform Sammy got your data from. Once they have it duplication is redundant.You keep repeating the same thing about your app, yes I know what you're trying to say. You're still missing the point. The point I keep explaining is regarding password hashing, please Google it if you want to understand. It means passwords on server are encrypted with a key they can't access.


However, they have no obligation to hash it. If they wanted to have the data in clear, they have that ability, using the app.

My point about Samsung Smartthings was only that smart devices do not need location data, and not all IOT devices collect that data. There is no reason for Meross to collect location data based on the product being a smart plug.
Post a comment
Avatar
@
    Text