Wyze knew hackers could remotely access your camera for three years and said nothing
Just came across this: https://www.theverge.com/23003418/wyze- ... disclosure
Wyze knew hackers could remotely access your camera for three years and said nothing
- Last Updated:
- Apr 28th, 2022 9:25 am
Tags:
- SCORE+13
- alpovs [OP]
- Deal Fanatic
- Sep 16, 2013
- 7444 posts
- 5080 upvotes
- SW ON
37 replies
- Solsearchin1
- Deal Fanatic
-
- Nov 24, 2012
- 5894 posts
- 2139 upvotes
- Space
What did y’all expect? Cheap cam AND security? Wyze only has enough cash for the cam 
- hierophant
- Deal Fanatic
- Feb 4, 2010
- 6782 posts
- 6427 upvotes
Disappointing but not surprising. It's a garbage product and the garbage company.
- BernardRyder
- Deal Fanatic
-
- Jun 16, 2009
- 6498 posts
- 6956 upvotes
- GTA
I have 3 V2's, and my family members bought a few also.
I'm not too worried about personal safety/face privacy since they all point outdoors but we do show up on them occasionally. This is rather disturbing and this coupled with their charging for subscriptions has me now wondering if I pull out of Wyze products completely and maybe go Google. But is that any better? It's definitely not as cheap.
I'm not too worried about personal safety/face privacy since they all point outdoors but we do show up on them occasionally. This is rather disturbing and this coupled with their charging for subscriptions has me now wondering if I pull out of Wyze products completely and maybe go Google. But is that any better? It's definitely not as cheap.
c'mon get happy!
- EugW
- Deal Expert
-
- Mar 23, 2009
- 21348 posts
- 7763 upvotes
- Toronto
It looks like I timed it correctly. I didn’t set up my V3 cams until Feb 2022. 
Seriously though, I have little confidence in this company’s security. Hell, I wasn’t even confident in my Synology’s security so it never had ports open to the net. Seems like my paranoia was justified, as Synology NASes were targeted by ransomware.
Seriously though, I have little confidence in this company’s security. Hell, I wasn’t even confident in my Synology’s security so it never had ports open to the net. Seems like my paranoia was justified, as Synology NASes were targeted by ransomware.
- Quentin5
- Deal Expert
-
- Feb 8, 2014
- 27709 posts
- 11854 upvotes
- Socially Distanced
Lets hope the lawsuits come soon.
In fact in Rand McNally they wear hats on their feet and hamburgers eat people
- oilerfan89
- Sr. Member
- Sep 15, 2017
- 993 posts
- 1281 upvotes
You pay for what you get!
- The_Professor
- Deal Addict
-
- Jan 14, 2007
- 4774 posts
- 2051 upvotes
- GTA
That's pretty brutal. I've since moved on from Wyze but I do still have one V2 in use in my garage just so I can keep an eye on my vehicles/contents. Looks like I'll be swapping that out too soon.
- ji2o0k
- Deal Expert
-
- Oct 28, 2004
- 23646 posts
- 5994 upvotes
- Toronto
whew, dodged a bullet there.....
I'm too lazy to set up cameras so put it off - when I finally did install a camera, it was a Nest Doorbell camera.
So procrastinating does pay off!!! Take that Mrs Sutherland!
I'm too lazy to set up cameras so put it off - when I finally did install a camera, it was a Nest Doorbell camera.
So procrastinating does pay off!!! Take that Mrs Sutherland!
Nothing at the moment
Heatware: 63-0-0
- alpovs [OP]
- Deal Fanatic
- Sep 16, 2013
- 7444 posts
- 5080 upvotes
- SW ON
- EugW
- Deal Expert
-
- Mar 23, 2009
- 21348 posts
- 7763 upvotes
- Toronto
Hmmm... It seems the vulnerability I was thinking of was for QNAP. Synology was brute force.
https://threatpost.com/ech0raix-ransomw ... es/168516/
https://www.zdnet.com/article/ransomwar ... d-attacks/
But either way, if the NAS isn't internet-facing, the risk of ransomware is much less of course.
- kramer1
- Deal Addict
- Apr 29, 2018
- 2328 posts
- 1694 upvotes
- Vancouver
This is the one of the main reasons, I run a wifi just for the "Cloud devices".
Garage Door opener & my Neatos refuse to work without internet, so they have their own segregated network. Everything else I have flashed so it works with my local Homebridge
On that QNAP hack, I just want to add that last year there was a vulnerability discovered in NetFilter. This is the base on which "iptables" runs. Which is used by literally every consumer level router.
While at the time, they said it only impacts local interfaces, but am not sure. It'd explain these attacks, where they got in through the NAT
Garage Door opener & my Neatos refuse to work without internet, so they have their own segregated network. Everything else I have flashed so it works with my local Homebridge
On that QNAP hack, I just want to add that last year there was a vulnerability discovered in NetFilter. This is the base on which "iptables" runs. Which is used by literally every consumer level router.
While at the time, they said it only impacts local interfaces, but am not sure. It'd explain these attacks, where they got in through the NAT
Can't Stop. Won't Stop. Game Stop
- alpovs [OP]
- Deal Fanatic
- Sep 16, 2013
- 7444 posts
- 5080 upvotes
- SW ON
- lead
- Deal Guru
-
- Nov 21, 2002
- 11624 posts
- 4006 upvotes
- Winnipeg
wasn't the reason for going wyze being that its an affordable half decent hardware you could hack and run opensource on it instead?
- evilYoda
- Deal Fanatic
-
- Nov 15, 2020
- 6083 posts
- 4727 upvotes
v1 doesnt have the ability to flash the firmware?
- middleofnowhere
- Sr. Member
- Dec 6, 2020
- 937 posts
- 1043 upvotes
The "S" in IoT stands for "security."
- Dave98
- Deal Fanatic
-
- Sep 10, 2005
- 5409 posts
- 3105 upvotes
- GTA
This is one of those exploits that likely wouldn't have affected 99% of users but the response was poor
- BoredAtWork
- Deal Addict
- Mar 28, 2011
- 1636 posts
- 1779 upvotes
- Toronto
Did you read the full article?The_Professor wrote: ↑ That's pretty brutal. I've since moved on from Wyze but I do still have one V2 in use in my garage just so I can keep an eye on my vehicles/contents. Looks like I'll be swapping that out too soon.
V2/3 is patched, only v1 impacted and even then the hacker had to be on your home network first and find the random camera ID to gain access after
- The_Professor
- Deal Addict
-
- Jan 14, 2007
- 4774 posts
- 2051 upvotes
- GTA
I did, it was a typo on my part, I have a V1 currently in use (and one more laying around somewhere).BoredAtWork wrote: ↑ Did you read the full article?
V2/3 is patched, only v1 impacted and even then the hacker had to be on your home network first and find the random camera ID to gain access after
- ChubChub
- Deal Addict
-
- Oct 9, 2010
- 3132 posts
- 1314 upvotes
- Windsor
Probably relatively few, actually. They all probably have netFilter, but it's probably decently rare that they run a vulnerable kernel for this issue to be a problem (5.4 to 5.6 or something). The bug became an issue in ~Feb. 2020 ... not sure how up-to-date routers are with their kernel, but I would assume most are quite old.
NASes OTOH? I could see them being a bit more aggressive with updates to gain fancier features.
One who is offended by truth, has no place among those who seek wisdom.
Thread Information
There is currently 1 user viewing this thread. (0 members and 1 guest)