Rocksolid Light

Welcome to novaBBS (click a section below)

mail  files  register  newsreader  groups  login

Message-ID:  

But it does move! -- Galileo Galilei

tech / rec.photo.digital / Wyze did nothing about a security hole reported by Bitdefender three years ago

SubjectAuthor
o Wyze did nothing about a security hole reported by Bitdefender three years agoNewsKrawler

1
Wyze did nothing about a security hole reported by Bitdefender three years ago

<t24tmk$2lf4e$1@paganini.bofh.team>

  copy mid

https://www.novabbs.com/tech/article-flat.php?id=11724&group=rec.photo.digital#11724

  copy link   Newsgroups: rec.photo.digital
Path: i2pn2.org!i2pn.org!paganini.bofh.team!not-for-mail
From: newskr...@krawl.org (NewsKrawler)
Newsgroups: rec.photo.digital
Subject: Wyze did nothing about a security hole reported by Bitdefender three years ago
Date: Thu, 31 Mar 2022 18:59:33 -0000 (UTC)
Organization: To protect and to server
Message-ID: <t24tmk$2lf4e$1@paganini.bofh.team>
Injection-Date: Thu, 31 Mar 2022 18:59:33 -0000 (UTC)
Injection-Info: paganini.bofh.team; logging-data="2800782"; posting-host="5IFKlfXIIF692ushLKoxOA.user.paganini.bofh.team"; mail-complaints-to="usenet@bofh.team";
X-Notice: Filtered by postfilter v. 0.9.1
 by: NewsKrawler - Thu, 31 Mar 2022 18:59 UTC

https://www.theverge.com/23003418/wyze-cam-v1-vulnerability-no-patch-bitdefender-responsible-disclosure
I'm done with Wyze.

Wyze knew hackers could remotely access your camera for three years and said
nothing.

For the past three years, Wyze has been fully aware of a vulnerability in
its home security cameras that could have let hackers look into your home
over the internet - but chose to sweep it under the rug. And the security
firm that found the vulnerability largely let them do it.

According to the security research firm's own disclosure timeline (PDF), it
reached out to Wyze in March 2019 and didn't even get a response until
November 2020, a year and eight months later. Yet Bitdefender chose to keep
quiet until just yesterday.

In case you're wondering, no, that is not normal in the security community.

1
server_pubkey.txt

rocksolid light 0.9.8
clearnet tor