The Insecurity of Video Doorbells
Schneier on Security
MARCH 5, 2024
Consumer Reports has analyzed a bunch of popular Internet-connected video doorbells. Their security is terrible.
This site uses cookies to improve your experience. By viewing our content, you are accepting the use of cookies. To help us insure we adhere to various privacy regulations, please select your country/region of residence. If you do not select a country we will assume you are from the United States. View our privacy policy and terms of use.
Schneier on Security
MARCH 5, 2024
Consumer Reports has analyzed a bunch of popular Internet-connected video doorbells. Their security is terrible.
Data Breach Today
FEBRUARY 10, 2021
Ilya Volovik of Gemini Advisory Describes Research Findings Banking institutions, cryptocurrency exchanges and other companies have begun implementing video-based identity verification. But deepfake technology can be used to circumvent these security checks, says Ilya Volovik, a researcher at Gemini Advisory.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Schneier on Security
FEBRUARY 22, 2024
Simon Willison has been playing with the video processing capabilities of the new Gemini Pro 1.5 Which means a lot of scary new video prompt injection attacks. model from Google, and it’s really impressive. And remember, given the current state of technology, prompt injection attacks are impossible to prevent in general.
Security Affairs
DECEMBER 24, 2023
Video game publisher Ubisoft is investigating reports of an alleged data breach after popular researchers shared evidence of the hack. Ubisoft , the popular video game publisher, is examining reports of a potential data breach following the disclosure of evidence by prominent researchers vx-underground.
Data Breach Today
JANUARY 24, 2024
federal networks after a government watchdog caught the government's main acquisition arm purchasing unauthorized, Chinese-manufactured video conference cameras. Experts Warn Against Increasing Federal Reliance on Chinese Technology Experts are raising fresh concerns about the "significant risk" for Chinese espionage against U.S.
KnowBe4
JANUARY 25, 2024
A new wave of ads utilizing video of well-known celebrities seemingly promoting video games, fake giveaways, and more are starting to popup, and fans are falling for this trap.
Security Affairs
FEBRUARY 5, 2024
million) from a multinational company in Hong Kong by employing a deepfake video call to deceive an employee into transferring the funds. The employee attended a video conference call with deepfake recreations of the company’s chief financial officer (CFO) and other employees who instructed him to transfer the funds.
Data Breach Today
MARCH 10, 2021
Arson Cats' Researchers Say Device Flaws Gave Them Full Access to Verkada Cameras The "Arson Cats" research group says it was able to exploit flaws in internet-accessible security cameras built by Silicon Valley "cloud-based enterprise video security" startup Verkada to access live video and audio feeds from inside Tesla, Okta and Cloudflare offices, (..)
The Security Ledger
JANUARY 25, 2023
A researcher is warning that photos and video files shared in Signal chats may be hanging around on devices, even when they deleted the messages in which the images were shared. The post Beware: Images, Video Shared on Signal Hang Around appeared first on The Security Ledger with Paul F.
Data Breach Today
JUNE 13, 2022
Video to Address HITECH Act Changes Affecting HIPAA Enforcement Actions Federal regulators have signaled plans to release video guidance on the "recognized security practices" they will consider when taking HIPAA enforcement actions against organizations. New audio telehealth guidance was also unveiled.
KnowBe4
DECEMBER 19, 2023
In this case, the scammers tell victims that they’ll get paid for liking YouTube videos. Researchers at Bitdefender warn that scammers are tricking victims with fake remote job opportunities.
Data Breach Today
NOVEMBER 9, 2020
Agency Requires Comprehensive Security Program As part of a settlement of allegations that Zoom "engaged in a series of deceptive and unfair practices that undermined the security of its users," the U.S.
Data Breach Today
APRIL 5, 2024
Chance of AI-Generated Content Affecting Results Appears to Remain Low - for Now China-backed attackers are continuing to refine their use of content generated using artificial intelligence tools, including audio deepfakes and video news anchors, to sow disruption and influence elections in the U.S.,
KnowBe4
FEBRUARY 20, 2024
In the rapidly evolving landscape of artificial intelligence (AI), the launch of Sora by OpenAI marks an unnerving milestone in video synthesis.
Security Affairs
NOVEMBER 29, 2021
Google Project Zero researchers have discovered two vulnerabilities in the video conferencing software Zoom that expose users to attacks. Security researchers from Google Project Zero discovered two vulnerabilities in the video conferencing software Zoom that expose users to attacks. Zoom VDI before version 5.8.4
Schneier on Security
MAY 22, 2023
Google has backtracked on its plan to delete inactive YouTube videos—at least for now. Of course, it could change its mind anytime it wants. It would be nice if this would get people to think about the vulnerabilities inherent in letting a for-profit monopoly decide what of human creativity is worth saving.
Security Affairs
SEPTEMBER 24, 2023
The Alphv ransomware group claims to have hacked Clarion, the global manufacturer of audio and video equipment for cars and other vehicles. The Alphv ransomware group added Clarion, the global manufacturer of audio and video equipment for cars and other vehicles, to the list of victims on its Tor leak site.
Data Breach Today
JUNE 18, 2021
National Security Agency has released new guidance to help federal agencies as well as business enterprises protect their unified communications channels and voice/video over IP calls from cyberthreats. Guidance Spells Out Best Risk Mitigation Practices The U.S.
IT Governance
APRIL 15, 2020
Maybe you feel less guilty about having a mid-morning video chat with a colleague in lieu of your normal coffee break. The video conferencing platform Zoom has been heavily criticised in recent weeks , amid a series of allegations related to its inadequate cyber security and privacy measures. Cyber attacks. Expert advice.
Data Breach Today
AUGUST 2, 2021
Case Stems From Concerns About 'Zoom Bombing' and Other Issues Cloud video conferencing provider Zoom has agreed to settle a consolidated class action federal lawsuit for $85 million as well as reform its security and data privacy practices.
Data Breach Today
DECEMBER 7, 2018
Convincing Face-Swapping Clips Easy to Create With Gaming Laptops and Free Tools The easy availability of tools for designing face-swapping deep-fake videos drove Symantec security researchers Vijay Thaware and Niranjan Agnihotri to design a tool for spotting deep fakes, which they described in a briefing at the Black Hat Europe 2018 conference in (..)
WIRED Threat Level
DECEMBER 7, 2023
Videos featuring Elijah Wood, Mike Tyson, and Priscilla Presley have been edited to push anti-Ukraine disinformation, according to Microsoft researchers.
Data Breach Today
DECEMBER 18, 2019
Forescout Finds Serious Flaws in DTEN Conferencing Systems Video conferencing and collaboration systems are must-have tools for global companies. But new research by Forescout illustrates that elementary security errors in one vendor's system could have allowed attackers to snoop on meetings and view sensitive documents.
Security Affairs
AUGUST 27, 2021
Researchers from Nozomi Networks discovered a critical vulnerability that can be exploited to hack a video surveillance product made by Annke. The vulnerability, tracked as CVE-2021-32941 can be exploited by an attacker to hack a video surveillance product made by Annke, a provider of home and business security solutions.
Troy Hunt
NOVEMBER 26, 2020
Part 3 was all about security and how that's all a bit of a mess too, particularly as it relates to firmware patching and device isolation on networks. Now in part 5, let's look at how it all works together, and I've done 11 short videos showing different parts of my house and how the IoT bits work there.
Data Breach Today
MAY 8, 2020
Meanwhile, Video Conferencing Firm Acquires Start-Up Encryption Company Zoom has reached a settlement with the N.Y. attorney general's office to provide better security and privacy controls for its video conferencing platform. Meanwhile, the company announced it's acquiring a start-up encryption company.
Security Affairs
DECEMBER 29, 2018
A vulnerability in the Guardzilla home video surveillance system could be exploited by users to watch Guardzilla footage of other users. The Guardzilla All-In-One Video Security System is an indoor video surveillance solution. ” read a post published by 0dayallday.org. ” reads the analysis published by Rapid7.
Security Affairs
MARCH 16, 2022
Russian disinformation continues, this time it used a deepfake video of Zelenskyy inviting Ukrainians to ‘lay down arms.’ ’ A deepfake video of the Ukrainian president Volodymyr Zelenskyy telling its citizens to lay down arms is the last example of disinformation conducted by Russia-linked threat actors.
IT Governance
DECEMBER 22, 2021
Ubisoft has confirmed that its popular video game series Just Dance has been targeted by cyber criminals. A statement from Ubisoft said that the breach was limited to “technical identifiers” including GameTags, profile IDs and device IDs, as well as recordings of Just Dance videos that were uploaded to a database accessible to other players.
Schneier on Security
APRIL 29, 2022
A Privacy Analysis of Mute Buttons in Video Conferencing Apps “: Abstract: In the post-pandemic era, video conferencing apps (VCAs) have converted previously private spaces — bedrooms, living rooms, and kitchens — into semi-public extensions of the office. New research: “ Are You Really Muted?:
Security Affairs
MAY 23, 2021
A misconfiguration issue in the software used by the Eufy video camera exposed private information and video streams of customers. Chinese electronics vendor Anker has recently addressed a bug that mistakenly exposed private information and video streams of customers using its Eufy video cameras. Pierluigi Paganini.
The Last Watchdog
JULY 13, 2023
Pittsburgh, PA – July 13, 2023 – Security Journey, a best-in-class application security education company, has today announced an acceleration of its secure coding training platform enhancements. undergraduate computer science programs mandate courses in application security.
Security Affairs
JANUARY 22, 2023
Video game developer and publisher Riot Games announced that it will delay the release of game patches after a security incident. Riot Games is an American video game developer, publisher and esports tournament organizer known for the creation of the popular games League of Legends and Valorant.
IG Guru
FEBRUARY 6, 2024
The post Hong Kong firm loses over $25mn after employee’s video call with deepfake ‘chief financial officer’, others via WION first appeared on IG GURU. Check out the story here.
Threatpost
APRIL 14, 2020
The popular video-sharing apps’s use of HTTP to download media content instead of a secure protocol could lead to the spread of misinformation on the platform.
Hunton Privacy
MARCH 20, 2023
The inquiries reflect a focus by the FTC on the extent of deceptive advertising on social media and video platforms; how the platforms create and monitor ads; and how they help consumers distinguish advertising and other commercial messages from other types of content.
Security Affairs
JANUARY 18, 2021
fine under GDPR against the online laptop and electronic goods retailer NBB for video-monitoring employees. million fine under the GDPR against an online laptop and electronic goods retailer NBB’s (notebooksbilliger.de) for video-monitoring employees for at least a couple of years. German data regulator LfD announced a €10.4M
Schneier on Security
OCTOBER 19, 2021
Researchers trained a machine-learning system on videos of people typing their PINs into ATMs: By using three tries, which is typically the maximum allowed number of attempts before the card is withheld, the researchers reconstructed the correct sequence for 5-digit PINs 30% of the time, and reached 41% for 4-digit PINs.
Jamf
DECEMBER 14, 2022
In September, thousands of Apple admins joined us at our first-ever hybrid Jamf Nation User Conference (JNUC) to discover new ways to manage and secure their Apple devices. We’re happy to share the love and now offer videos of these sessions online!
Security Affairs
SEPTEMBER 19, 2022
Threat actors leaked source code and gameplay videos of Grand Theft Auto 6 (GTA6) after they have allegedly breached Rockstar Game. Threat actors allegedly compromised Rockstar Game’s Slack server and Confluence wiki and leaked Grand Theft Auto 6 gameplay videos and source code. The footage is early and unfinished, of course.
WIRED Threat Level
JANUARY 20, 2021
Faces of the Riot used open source software to detect, extract, and deduplicate every face from the 827 videos taken from the insurrection on January 6.
Security Affairs
MARCH 30, 2023
Popular voice and video conferencing software 3CX was the victim of a supply chain attack, SentinelOne researchers reported. As of Mar 22, 2023, SentinelOne observed a spike in behavioral detections of the 3CXDesktopApp, which is a popular voice and video conferencing software product.
Data Breach Today
FEBRUARY 5, 2021
Remote Attackers Could Spy on Audio, Video Certain Geeni doorbells and security cameras made by IoT company Merkury Innovations contain serious flaws. The flaws will be fixed this month, more than three months after the company was notified. Major retailers, including Walmart, Amazon and Home Depot, sell the devices.
Schneier on Security
AUGUST 1, 2022
Amazon has revealed that it gives police videos from its Ring doorbells without a warrant and without user consent. In each case, Ring handed over private recordings, including video and audio, without letting users know that police had access to—and potentially downloaded—their data.
Expert insights. Personalized for you.
We have resent the email to
Are you sure you want to cancel your subscriptions?
Let's personalize your content