Anker's Eufy branded security camera has a bug that allows you to take full control of someone else's camera in red
It has been reported that the security camera of Anker's home appliance brand '
Access to Random Cameras in another country: EufyCam
https://www.reddit.com/r/EufyCam/comments/neayuo/access_to_random_cameras_in_another_country/
Eufy privacy breach leaks both live and recorded cam feeds --9to5Mac
https://9to5mac.com/2021/05/17/huge-eufy-privacy-breach/
Eufy responds to huge privacy breach, attributes unauthorized camera access to server'bug' ―― 9to5Mac
https://9to5mac.com/2021/05/17/eufy-privacy-breach-homekit/
Had reported the presence of a bug that exists in Eufy made of the security camera is a user of overseas bulletin board Reddit · MeChum87 's. When he tried to check the video recorded by his security camera using Eufy's dedicated app, he noticed that his video did not exist. The video that was displayed instead of MeChum87's video was showing a kangaroo, so it seems that it was recorded by 'someone's Eufy camera' used in Australia.
According to MeChum87, it was possible to check someone's account information displayed in their own application, and it was possible to browse contact information etc. 'I have three little kids, so I'm very worried that someone else in red might be watching a video taken by my camera,' said MeChum87.
On the other hand, some users have reported that they saw a live video that should have been delivered to someone else's account as well. According to this user, not only was it possible to access live and recorded videos, but it was also possible to operate the camera itself, pan / tilt and start new recordings.
A 9to5Mac reporter from Apple-related media also confirmed the problem with Eufy's camera, saying, 'You can check all the details, recordings, live content, etc., as if you were logged in to someone else's account. It was. ' In addition, 9to5Mac reports that access to his camera was restored when he logged out of his account and logged in again.
When 9to5Mac asked Eufy to comment on this bug, it said, 'A limited number (0.001%) due to a software bug that occurred during the latest server upgrade at around 4:50 local time on May 17th. ) Users now have access to video feeds from other users' cameras. Our engineering team confirmed the problem around 5:30 after the server update and confirmed the problem by 6:30. This issue has had a slight impact on users in the US, New Zealand, Australia, Cuba, Mexico, Brazil and Argentina, but not on European users. Eufy's customer service team has been affected. We will continue to contact those who have received it. ' Eufy emphasizes that only a small number of affected users.
Eufy explained that baby watching products , smart locks , alarm systems , and pet products were unaffected. In other words, products in categories such as Eufy battery cameras , doorbells with cameras, cameras with lights , and indoor security cameras seem to have been affected by the bug.
In other words, the indoor security camera 'Eufy IndoorCam Pan & Tilt 2K', which was also reviewed by GIGAZINE, may have been affected by the bug.
Anker's security camera 'Eufy IndoorCam Pan & Tilt 2K' review that can record 2K movies and detect motion for less than 5,000 yen --GIGAZINE
Eufy has also reported bugs on its official website and Twitter's official account, recommending 'unplug, log out of your account, and log in again.' However, since the details of the bug have not been revealed, 9to5Mac said, 'Will Eufy, who has cleared up a large-scale security problem with only the vague word'bug', be trusted in the future?' I am questioning.
1.Please unplug and then reconnect the device.
— Eufy (@EufyOfficial) May 17, 2021
2. Log out of the eufy security app and log in again.
For any questions, users can contact our support team at [email protected].
It's also clear that users accessing Eufy's security cameras via HomeKit Secure Video aren't affected by this bug.
Related Posts:
