Wyze Labs, a well-known smart home product developer, recently announced that a serious security vulnerability occurred in its monitor service last Friday (16th). This caused 13,000 users to accidentally view other users’ monitor images. So, what should you know about it?
The company explained that the root cause of the security incident was a technical failure of its partner Amazon Web Services (AWS) servers, which resulted in errors after restarting. That means some users were able to access and monitor images that were not on their event tabs or device screen.
After the company's investigation, it was confirmed that approximately 13,000 users were affected. Reportedly, 1,504 users clicked on these images, and some users were even able to directly watch videos of the incident. Wyze Labs stated that this security vulnerability is caused by a recently integrated third-party caching client library. When the server is overloaded, the caching system cannot correctly identify the device ID and user ID, resulting in a monitor screen connection error.
To prevent similar incidents from happening again, the company has taken steps to strengthen security verification measures and made system modifications to avoid cache checks. The company is also looking for other solutions.
It is worth noting that this is not the first time Wyze has encountered security issues. Earlier in 2019, the company was criticized for leaking the data of 2.4 million users, while some cybersecurity experts pointed out security vulnerabilities in its products.
This security breach once again caused users to worry about their privacy security. Many people expressed dissatisfaction with the company's handling of the problem and believed that the company should pay more attention to the protection of users' data. Given that data leaks happen frequently in Malaysia, this could be a real cause for concern.
What are your thoughts about this news? Stay tuned for more news and updates like this at TechNave!
COMMENTS