"More than 1 million internet-connected baby monitors and security cameras may have exposed private household activity, including images from inside homes and nurseries. The reported flaws were tied to Meari Technology, whose hardware, apps, and cloud infrastructure support more than 300 white-label camera brands sold through marketplaces, including Amazon. Researcher Sammy Azdoufal said the vulnerabilities exposed backend systems, motion-alert images, device data, and real-time camera activity."
"What makes this story especially frustrating is that it highlights one of the hardest problems in IoT security: whiteboxed products and fragmented accountability. In these business models, margins are razor thin, which often means security investment gets treated as a cost center instead of a product requirement."
"Researcher Sammy Azdoufal identified exposed backend systems, publicly accessible images, weak encryption protections, and hardcoded credentials. The vulnerabilities affected white-label IoT ecosystems used by more than 300 camera brands sold through marketplaces like Amazon. Some flaws allegedly allowed attackers to monitor camera activity, access stored images, and retrieve device information without authorization."
More than one million internet-connected baby monitors and security cameras reportedly exposed private household activity, including images from inside homes and nurseries. The exposure was linked to Meari Technology, which provides hardware, apps, and cloud infrastructure for more than 300 white-label camera brands sold through marketplaces such as Amazon. Reported vulnerabilities exposed backend systems, motion-alert images, device data, and real-time camera activity. The issues included publicly accessible images, weak encryption protections, and hardcoded credentials. Some flaws allegedly enabled unauthorized access to stored images and the ability to monitor camera activity. Security professionals warned the incident reflects broader risks in IoT supply chains and third-party infrastructure used by connected devices.
Read at TechRepublic
Unable to calculate read time
Collection
[
|
...
]