Serious problem for Wyze cameras: a vulnerability made it possible to spy on other customers
Bad misadventure for several security camera owners Wyze. In particular, a critical issue has allowed many users to see inside other customers’ homes. Among other things, there were not 14 people involved, as indicated at the beginning by the company created by former Amazon employees, but about 13,000.
Getting to the heart of the news, Wyze pointed the finger at his partner AWS, explaining that it stopped service last Friday: as a result, Wyze devices were blocked for several hours. The company, therefore, tried to restore the functioning of the cameras, however at the same time many users they displayed images and videos from other houses in the “Events” section.
The company then explained that the serious problem was caused by a client library that “received unprecedented load conditions caused by devices coming back online all at once.” All this would have caused “linking some data to incorrect accounts”: From here, viewing thumbnails of the interiors of other people’s homes.
Among other things, of the 13,000 customers affected, 1,504 would have pressed on the image to enlarge it.
To prevent this situation from happening again, the company is planning the implementation of a new level of verification before users can access images and videos in the Events tab. In any case, all this may not be enough to avoid possible legal action by the customers involved. Finally, this is not the first time Wyze has faced such problems. In the 2022for example, a vulnerability allowed a group of hackers to view stored videos while in the 2019 personal data of approximately 2.4 million Wyze camera users.