{"id":58939,"date":"2022-12-01T15:57:36","date_gmt":"2022-12-01T20:57:36","guid":{"rendered":"http:\/\/pappp.net\/?guid=546301e0e37298bdb34f84d572b40f2f"},"modified":"2022-12-01T15:57:36","modified_gmt":"2022-12-01T20:57:36","slug":"eufys-local-storage-cameras-can-be-streamed-from-anywhere-unencrypted","status":"publish","type":"post","link":"https:\/\/pappp.net\/?p=58939","title":{"rendered":"Eufy\u2019s \u201clocal storage\u201d cameras can be streamed from anywhere, unencrypted"},"content":{"rendered":"

Source: Ars Technica<\/a><\/p>\n

Article note: I have a whole meme-media library in my head that goes off when I read about IoT bullshit being bullshit. \nThe \"You plugged it in to the phone didn't you, if you screw up again you won't get into college\" bit from the beginning of Hackers, the explaining no networked computers bit from the new\/rdj\/2004\/good Galactica, and James Mickens' \"Not Even Close: The State of Computer Security\" NDC talk from NDC 2015, specifically \"all the membranes beast\" from the \"YOUR HOUSE ON INTERNET OF THINGS\" slide. All playing at once. Every time I read about another piece of garbage that shouldn't have an external network connection, but does because fuck you.<\/div>
\n
\"Eufy

Enlarge<\/a> \/<\/span> Eufy's camera footage is stored locally, but with the right URL, you can also watch it from anywhere, unencrypted. It's complicated. <\/p> <\/figure>

<\/a><\/div>\n

When security researchers found that Eufy's supposedly cloud-free cameras were uploading thumbnails with facial data to cloud servers<\/a>, Eufy's response was that it was a misunderstanding, a failure to disclose an aspect of its mobile notification system to customers.<\/p>\n

It seems there's more understanding now, and it's not good.<\/p>\n

Eufy didn't respond to other claims from security researcher Paul Moore and others, including that one could stream the feed from a Eufy camera in VLC Media Player<\/a>, if you had the right URL. Last night, The Verge, working with the security researcher \"Wasabi\" who first tweeted the problem<\/a>, confirmed it could access Eufy camera streams, encryption-free<\/a>, through a Eufy server URL.<\/p><\/div>

Read 7 remaining paragraphs<\/a> | Comments<\/a><\/p>","protected":false},"excerpt":{"rendered":"

Enlarge \/ Eufy’s camera footage is stored locally, but with the right URL, you can also w…<\/p>\n

Continue reading →<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[226],"tags":[],"class_list":["post-58939","post","type-post","status-publish","format-standard","hentry","category-news-2"],"_links":{"self":[{"href":"https:\/\/pappp.net\/index.php?rest_route=\/wp\/v2\/posts\/58939","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pappp.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/pappp.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/pappp.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/pappp.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=58939"}],"version-history":[{"count":0,"href":"https:\/\/pappp.net\/index.php?rest_route=\/wp\/v2\/posts\/58939\/revisions"}],"wp:attachment":[{"href":"https:\/\/pappp.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=58939"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/pappp.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=58939"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/pappp.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=58939"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}