• Monday, May 10, 2021
  • Last Update : 01:05 am

Hackers breach thousands of CCTV cameras, exposing Tesla, jails, hospitals

  • Published at 09:58 am March 10th, 2021
Hacker hacking
File photo: A hooded man holds a laptop computer as cyber code is projected on him in this illustration picture taken on May 13, 2017. REUTERS

The security breach also hit Cloudflare, Okta, Madison County Jail in Alabama, Bay Club and Virgin Hyperloop

A small group of hackers viewed live and archived surveillance footage from hundreds of businesses including Tesla Inc by gaining administrative access to camera maker Verkada over the past two days, one of the people involved in the breach told Reuters.

Swiss software developer Tillie Kottmann, who has gained attention for finding security flaws in mobile apps and other systems, shared screenshots on Twitter from inside a Tesla warehouse in California and an Alabama jail in messages to Reuters. Kottmann declined to identify other members of the group.

Kottmann said they sought to draw attention to the pervasive monitoring of people after having found login information for Verkada’s administrative tools publicly online this week.

Verkada acknowledged an intrusion, saying it had disabled all internal administrator accounts to prevent unauthorized access.

“Our internal security team and external security firm are investigating the scale and scope of this issue, and we have notified law enforcement” and customers, the company said.

Kottmann said Verkada cut off the hackers’ access hours before Bloomberg first reported the breach on Tuesday.

The hacking group, if it had chosen, could have used its control of the camera gear to access other parts of company networks at Tesla and software makers Cloudflare Inc and Okta Inc, according to Kottmann.

Tesla, Cloudflare and Okta did not immediately respond to requests for comment.

A list of Verkada user accounts provided by the hacking group and seen by Reuters includes thousands of organizations, including gym chain Bay Club and transportation technology startup Virgin Hyperloop.

Reuters could not independently verify the authenticity of the list or screenshots distributed by Kottmann, but they included detailed data and matched other materials from Verkada.

Madison County Jail in Alabama, Bay Club and Virgin Hyperloop did not respond to requests for comment.

Verkada says on its website it has over 5,200 customers, including cities, colleges and hotels. Its cameras have proved popular because they pair with software to search for specific people or items. Users can access feeds remotely through the cloud.

In a 2018 interview with Reuters, Chief Executive Filip Kaliszan said Verkada had deliberately made it easy for many users at an organization to watch live video feeds and securely share them, such as with emergency responders.

Verkada has raised $139 million in venture capital, with the latest financing announced a year ago valuing the Silicon Valley startup at $1.6 billion.

Verkada drew scrutiny last year after Vice reported that some employees had used company cameras and its facial recognition technology to take and share photos of female colleagues.

Kaliszan later described the behavior as “egregious” and said three people had been fired over the incident.

51
Facebook 50
blogger sharing button blogger
buffer sharing button buffer
diaspora sharing button diaspora
digg sharing button digg
douban sharing button douban
email sharing button email
evernote sharing button evernote
flipboard sharing button flipboard
pocket sharing button getpocket
github sharing button github
gmail sharing button gmail
googlebookmarks sharing button googlebookmarks
hackernews sharing button hackernews
instapaper sharing button instapaper
line sharing button line
linkedin sharing button linkedin
livejournal sharing button livejournal
mailru sharing button mailru
medium sharing button medium
meneame sharing button meneame
messenger sharing button messenger
odnoklassniki sharing button odnoklassniki
pinterest sharing button pinterest
print sharing button print
qzone sharing button qzone
reddit sharing button reddit
refind sharing button refind
renren sharing button renren
skype sharing button skype
snapchat sharing button snapchat
surfingbird sharing button surfingbird
telegram sharing button telegram
tumblr sharing button tumblr
twitter sharing button twitter
vk sharing button vk
wechat sharing button wechat
weibo sharing button weibo
whatsapp sharing button whatsapp
wordpress sharing button wordpress
xing sharing button xing
yahoomail sharing button yahoomail