This article was published on February 28, 2020

Shocker: There’s another smart camera hackers can use to spy on you

They really Cacagoo'ed this camera


Shocker: There’s another smart camera hackers can use to spy on you

In case you needed a reason not to buy an internet-connected camera to guard your fortress: Yet another smart camera contained severe vulnerabilities that made it possible for hackers to hijack your device and spy on you in the privacy of your home.

Researchers from antivirus firm Avira are warning that kinks in one of Cacagoo’s IP cameras (TV-288ZD-2MP) suffers from weak authentication protocols. The flaw not only exposes footage recorded by the device, but also makes it possible to infect the gadget with malware that scans your smart home network for other vulnerable systems.

[Read: Amazon Engineer: ‘Ring should be shut down immediately and not brought back’]

That’s not all. “During our network behavioural analysis of both devices, we observed suspicious behaviour,” the security professionals said. “It is noted that the app is trying to connect to a random Chinese domain. […] The info is being leaked through the app, which is suspicious and can be considered as a security flaw.”

The 💜 of EU tech

The latest rumblings from the EU tech scene, a story from our wise ol' founder Boris, and some questionable AI art. It's free, every week, in your inbox. Sign up now!

Just yesterday, researchers from Bitdefender revealed they had detected gaping security holes in a popular brand of baby monitors. The bugs made it possible to for attackers to creep on toddlers.

It’s not clear whether the shortcoming in Cacagoo’s cameras has been patched, but we’ve reached out to Avira for a clarification. In the meantime, the researchers have provided some tips on how to mitigate risks of breach. For more details, head to this page.

Get the TNW newsletter

Get the most important tech news in your inbox each week.

Also tagged with


Published
Back to top