A Wyze Cam internet camera vulnerability allows unauthenticated, remote access to videos and images stored on local memory cards and has remained unfixed for almost three years. [image] Wyze Cam flaw lets hackers remotely access your saved videos A Wyze Cam internet camera vulnerability…

Wow I’m surprised how irresponsible BleepingComputer comes off here. While still a serious vulnerability, this is almost scare mongering when it doesn’t mention that almost no one is vulnerable to this because almost everyone is using a WyzeCam behind a NAT router, not handing out unprotected publi…

May or may not be related to this (depending on reporting user’s response)? [image] Update to the SD Card recording thread Cameras Do tell - I gather without removing the card. How are you getting the recordings off the card? I don’t have any need for the upload to Yo…

And that it was fixed a couple months ago. I just tried it and no access. But my cameras are all up to date.

From the linked piece: [image] Why would the logs, UID and ENR be stored on SD card?

The part I find most interesting is the WYZE response at the end. "At Wyze, we put immense value in our users’ trust in us, and take all security concerns seriously. We are constantly evaluating the security of our systems and take appropriate measures to protect our customers’ privacy. We appreci…

Meh, I am boring so they wouldn’t get much if they did hack them. I Only have 2 out of 5 cameras working since last update. :face_with_diagonal_mouth:

Very interesting… Security issues aside, and throwing this out there for the more technically adept… A little off topic “allowed remote users to access the contents of the SD card in the camera via a webserver.” So if hackers can see the contents of the SD when not protected by a NAT router, why c…

[image] Known1: …that it took WYZE multiple years to address the 3 concerns they brought forward. I do not consider multiple years to fix these issues taking “all security concerns seriously”. In fact, I’m extremely disappointed and based on the actions taken by WYZE it is clear that they do not…

For a few more details on these vulnerabilities: https://www.bitdefender.com/blog/labs/vulnerabilities-identified-in-wyze-cam-iot-device/ Ultimately, you will likely want this, which is linked from the page above: https://www.bitdefender.com/files/News/CaseStudies/study/413/Bitdefender-PR-Whitepa…

This is the reason that I don’t put a app controlled door lock on my home or office. Leaving major security holes for years if a major violation of trust, and if they or ok with doing it once, how can i trust them going forward? Love the products, but this makes me lose all respect for WYZE.

UPDATE YOUR FIRMWARE - Wyze Cam flaw lets hackers remotely access your saved videos ( * if they can gain access to your local network/WiFi )

Cameras

peepeep March 29, 2022, 8:43pm 5

From the linked piece:

Why would the logs, UID and ENR be stored on SD card?

1 Like

Wyze in the news today, and it’s not good

Topic		Replies	Views
Wyze in the news today, and it’s not good Watercooler bug	52	3387	February 25, 2023
Response to the 3/29/22 Security Report Wyze News important	163	9408	April 29, 2022
READ THIS THREAD! RATE THE THREAT! :military_helmet: Watercooler bug	13	1778	April 3, 2022
Big security flaw regarding NO "Camera Tampering Detection" or SD card removal/power loss Cameras cam-v3	27	2025	April 21, 2022
Update Your Wyze Cam v3 Firmware For Latest Security Updates 10/30/23 Wyze News	55	12983	January 31, 2024

UPDATE YOUR FIRMWARE - Wyze Cam flaw lets hackers remotely access your saved videos ( * if they can gain access to your local network/WiFi )

Related topics