This isn't the first time that Wyze, a Seattle-based company offering smart home products such as cameras and doorbells, has experienced a cybersecurity issue like this.
In September 2023, Wyze camera users reported that they were seeing camera feeds that were not theirs.
According to Wyze, this issue was the result of a Web caching problem.
Now this issue is occurring once again, but at a seemingly greater scale.
Around 13,000 users received thumbnails from cameras that were not theirs, and 1,504 of those users enlarged the image.
There were also instances where the thumbnail was attached to a video and the video was viewed.
The User Point of View At least 10 individuals on Reddit reported that they were seeing images on the Wyze app that did not belong to their household.
For one person, the picture was of a stranger's porch.
For another, it was someone else's living room.
Some were seeing footage from a different time zone altogether.
Users were seeing these thumbnails for cameras that weren't their own in the Wyze app's Events tab, according to David Crosby, Wyze co-founder and chief marketing officer.
Once reports of the privacy issue began to come in, the Events tab was taken down.
A new, extra layer of verification has now been added, Crosby noted, and all users must log out of the Wyze app and reset tokens if they have been active.
AWS did not report an outage during the time the Wyze cameras were facing these issues.
An investigation is still underway, and though Wyze has seemingly been much more transparent during this cyber incident compared with the last, it's unclear how this will affect user trust, or how the company will prevent something like this from happening again.
This Cyber News was published on www.darkreading.com. Publication date: Tue, 20 Feb 2024 22:15:10 +0000