In the News

How safe are the smart cameras in your home? A number of Ring employees were fired for watching customer videos more than they should have been.
So-called "smart" security cameras have had some pretty dumb security problems recently, but a recent report regarding a Xiaomi camera linked to a Google account is especially disturbing. One Xiaomi Mijia camera owner is getting still images from other random peoples' homes when trying to stream content from his camera to a Google Nest Hub. The images include stills of people sleeping and even an infant in a cradle.
If you invest in an internet-connected security camera system, one might expect that the makers would take security extremely seriously. After all, what consumer would invest in such a system if they were worried about hackers spying on them in their home?

Shockingly, executives at Wyze Labs, makers of a line of popular affordable security cameras, just announced that personal information from 2.4 million customers had been exposed to the public. The breach included information like WiFi network details and customer email addresses.
Ring security camera hacks see homeowners subjected to racial abuse, ransom demands https://abcnews.go.com/US/ring-security-camera-hacks-homeowners-subjected-racial-abuse/story?id=67679790 Multiple U.S. families have reported incidents of Ring camera systems being hacked in recent days, raising questions as to whether the systems are allowing hackers access to people's homes, without ever having to set foot inside.
Under some circumstances, a wireless home security camera made by D-Link can transmit unencrypted video across the web, a Consumer Reports investigation has found. That could allow the video to be accessed by strangers.
Tara Thomas thought her daughter was just having nightmares. “There’s a monster in my room,” the almost-3-year-old would say, sometimes pointing to the green light on the Nest Cam installed on the wall above her bed.
D-Link has reached a proposed settlement with the U.S. Federal Trade Commission, which alleged the IoT device developer left consumers vulnerable to hackers through inadequate security practices.
Lack of security in the default settings of Internet-enabled video cameras make co-opting video feeds not just a movie-hacker technique, but a reality for millions of cameras.
Security researchers have uncovered a security flaw in a popular home security camera which permits remote spying without any form of authentication.
Trend Micro, a cybersecurity solutions provider, recently reported that it blocked ~5 million hacking attempts of IP-connected cameras in just the last 5 months. This means that a hell of a lot of people are trying to hack into Internet-connected cameras.

But why?
One of the world’s largest threat intelligence research groups, Cisco Talos, recently discovered scores of vulnerabilities in Google’s Nest Cam IQ indoor camera. Cisco Talos identified multiple exploitable problems with the IP security camera. The vulnerabilities were linked to Weave, the protocol Nest relies on to enable users to configure and establish initial communication of the device. The vulnerabilities could allow an attacker to carry out a range of attacks, from denial of service, code execution or information disclosure. An adversary could also seize control over the affected devices.
A few months ago, Arjun Sud from Illinois-US heard a man’s voice from his seven-month-old son’s room. The voice was coming from one of the Nest cameras installed in the child’s room.
It's often terrifyingly easy for hackers to spy on your sleeping baby. One South Carolina mother may have found that out the hard way.
Despite its ubiquity, Internet of Things security still isn't ready for prime time.
Someone got a peek inside a stranger's kitchen in a clear privacy breach.
Kaspersky Lab researchers found multiple vulnerabilities in certain smart cameras that could allow attackers to obtain remote access to video and audio feeds.
“My son came running out of the playroom and found me in the kitchen and said 'it’s not daddy talking to me. It’s not daddy.'”
Ring has a history of lax, sloppy oversight when it comes to deciding who has access to some of the most precious, intimate data belonging to any person: a live, high-definition feed from around — and perhaps inside — their house.