Mar 10, 2021 10:40:00

150,000 surveillance cameras such as Tesla and Cloudflare were hacked and video leaked, damaging not only companies but also schools and hospitals

Verkada , a startup that handles cloud management services for video data from surveillance cameras, suffered a large-scale hack. The data leaked from the company includes data on 150,000 surveillance cameras installed in Tesla factories and warehouses, Cloudflare offices, hospitals, prisons and schools.

Tesla (TSLA), Cloudfare (NET) Breached in Verkada Security Camera Hack --Bloomberg
https://www.bloomberg.com/news/articles/2021-03-09/hackers-expose-tesla-jails-in-breach-of-150-000-security-cams

Security startup Verkada hack exposes 150,000 security cameras in Tesla factories, jails, and more --The Verge
https://www.theverge.com/2021/3/9/22322122/verkada-hack-150000-security-cameras-tesla-factory-cloudflare-jails-hospitals

Hackers access surveillance cameras at Tesla, Cloudflare, banks, more
https://www.bleepingcomputer.com/news/security/hackers-access-surveillance-cameras-at-tesla-cloudflare-banks-more/

According to Willie Kottmann, a member of the international hacker group that hacked Verkada, this hack is a demonstration of how common and easy to hack Verkada's surveillance cameras. Kottmann claims that he was able to access not only real-time footage from all surveillance cameras, but also complete recorded data.

Below is a video of a surveillance camera installed in a Tesla warehouse that was actually released by Kottmann.

ever wondered what an @Tesla warehouse looks like?

APT-69420 Arson Cats #OperationPanopticon pic.twitter.com/NBubfPaAx5

— Tillie crimew (APT-69420 Arson Cats ????) (@nyancrimew) March 9, 2021

An image of the Tesla manufacturing plant.

The Madison County Prison in Iowa is below.

Companies allegedly damaged include Tesla, Cloudflare, and luxury gym chain Equinox . Other public institutions include the Halifax Health Hospital in Florida, Sandy Hook Elementary School in Newtown, Connecticut, known for shootings, and the Wadley Community Health Center in Texas.

According to Kottmann, he obtained hard-coded Verkada privileged administrator account credentials from within the published DevOps infrastructure. According to the credentials of this administrator account, it was possible to access not only the video of the surveillance camera but also the customer information.

ever wondered what a mainenance backdoor root shell inside the Cloudflare or Telsa HQs would look like?

three clicks in a browser to get here with the right kind of account on the right webapp.

APT-69420 ArsonCats #OperationPanopticon pic.twitter.com/vCDPcgrZ3j

— Tillie crimew (APT-69420 Arson Cats ????) (@nyancrimew) March 9, 2021

Verkada has already taken steps to disable all internal administrator accounts and has asked external security companies as well as the internal security team to investigate this case in detail.

・ Continued
Cloudflare himself explains the case where all surveillance cameras in Cloudflare were hacked --GIGAZINE

by Marco Verch Professional Photographer