Slashdot Mirror

← Back to Stories (view on slashdot.org)

Home Security Camera Sends Video To Wrong User (bbc.com)

Posted by BeauHD on from the whoopsie-daisy dept.

An anonymous reader quotes a report from the BBC: A leading security camera-maker has sent footage from inside a family's home to the wrong person's app. Swann Security has blamed a factory error for the data breach -- which was brought to its attention by the BBC -- and said it was a "one-off" incident. The BBC first learned of the problem on Saturday, when a member of its staff began receiving motion-triggered video clips from an unknown family's kitchen. Until that point, Louisa Lewis had only received footage from her own Swann security camera, which she had been using since December. The development coincided with Ms Lewis's camera running out of battery power and requiring a recharge. A Swann spokeswoman said that "human error" had caused two cameras to be manufactured that shared the same "bank-grade security key -- which secures all communications with its owner." "This occurred after the [family] connected the duplicate camera to their network and ignored the warning prompt that notified: 'Camera is already paired to an account' and left the camera running," she added.

18 of 91 comments (clear)

  1. Bank-grade security key? by toonces33 · · Score: 2

    Yeah, right.

    1. Re:Bank-grade security key? by gtvr · · Score: 2

      It's like the phrase "highly classified" - it means nothing. In the US something can be classified as confidential, secret or top-secret. There is no category "highly." So what is bank-grade? I mean, we're talking key size here, so just give us a number. And obviously the implementation is broken if human error can put the same key on different devices.

    2. Re:Bank-grade security key? by Nidi62 · · Score: 3, Insightful

      It's like the phrase "highly classified" - it means nothing. In the US something can be classified as confidential, secret or top-secret. There is no category "highly." So what is bank-grade? I mean, we're talking key size here, so just give us a number. And obviously the implementation is broken if human error can put the same key on different devices.

      Is that like the "military-grade aluminum" Ford has been advertising as making their trucks out of now? Does that mean they were made out of recycled beer and coke cans picked up in military bases from Bagram to Bragg?

      --
      The only thing necessary for evil to triumph is for it to be pitted against a slightly greater evil
    3. Re:Bank-grade security key? by Junta · · Score: 2

      It's actually worse than that.

      Obviously their process is to generate a key and *then* load that key onto the device. For something like MAC address, this makes sense as you only have 24 bits to play with and you need to coordinate it.

      For a cryptographic key, the device should generate key if no key existing and they should be relying upon that to generate keys, rather than any external process. It shouldn't be possible for a private key to be duplicated because it should never be possible for a private key to be extracted or injected into a device.

      --
      XML is like violence. If it doesn't solve the problem, use more.
    4. Re:Bank-grade security key? by swillden · · Score: 3, Interesting

      Yeah, right.

      Meh.

      All this means is that they're using standard crypto -- and if it's really "bank grade" then it could be a little behind the times. Banks still use 3DES all over the place. That's not a security problem, exactly, but they really need to update.

      I'm surprised they didn't use the more common "military-grade security" phrase. It's not one whit more meaningful than "bank-grade security", other than it probably indicates use of AES, perhaps AES-256, given the NSA's apparent concern about quantum computing.

      I guess both phrases can be taken to indicate "We aren't complete idiots who roll our own ciphers" though it definitely leaves the door wide open for "(but we are stupid enough to roll our own protocols and implementations)". No way to know on the latter point without looking at the details.

      --
      Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
  2. blame the end-user by burgundy · · Score: 4, Insightful

    A subtle attempt to shift blame to the people that bought this piece of (apparent) junk, ""This occurred after the [family] connected the duplicate camera to their network and ignored the warning prompt that notified: 'Camera is already paired to an account' and left the camera running," she added."

    'Camera is already paired to an account'? Could mean it's already been paired to my account and I'm trying to re-pair it. Could be a message indicating success – that you've paired it to the intended account. I'm sure the company will claim this message's meaning is crystal clear and that the people who bought it are partially to blame. I'm not buying that (the dodge or the webcam).

  3. Are you sure? by thegarbz · · Score: 2

    Your gun is currently aimed at your own foot. Are you sure you wish to continue pulling trigger?

    Given that the system identified the multiple account issue, and I assume they didn't have a common system in place to allow multiple accounts to work with one camera why was:

    a) the camera not depaired from the old account?
    b) was the camera allowed to be paired to a new account?

    bonus question:

    c) if this was by design to allow multiple accounts to access a camera, why is the system setup in such a poor way?

    1. Re:Are you sure? by Luthair · · Score: 2

      Sounds like one could sell the camera and continue to monitor it with their setup ;)

  4. Misleading quotation by rhazz · · Score: 4, Informative
    The quotation in the summary and even a bit in the article are very misleading. The company seems to take full responsibility for the issue and are not passing blame. The line right after that quote is:

    "We are regretful that this was not addressed immediately and adequately by our support team, when discovered. We have addressed this and made some internal changes."

    They do however have a previous incident where the exact same thing happened, and in that case they apparently suggested it was because two completely unrelated users used the same user and password (which wasn't true).

  5. Camera already paired by Anonymous Coward · · Score: 4, Interesting

    Warning messages like this are entirely useless. If someone gets a message 'Camera is already paired to an account', they'll get annoyed and click through it. It doesn't tell them what the problem really is, it doesn't warn them of the consequences, and it's just plain in the way of them finishing the onerous task of registering their devices to get basic functionality.

    A better message might have warned them, 'this camera appears to be already registered to another account, possibly because it was resold. If you continue, the camera's previous owner will be able to view this camera in your home'. Even better, it could instruct them to contact tech support to switch ownership of this camera. Better yet, do away with the annoying useless popup message and just deregister the old account's ownership.

    They say it's a one-off factory error, but they still should have been able to foresee a camera being bought by one user and later sold to another user. Dealing with that problem would have made the one-off factory error a nonissue. Yes it would have deregistered the old camera, but at least that's something that can be handled through support rather than by sending video to the wrong account.

  6. Re:Really??! by nedlohs · · Score: 2

    I think bank-grade means 4 digit passwords.

  7. The cloud by 110010001000 · · Score: 3, Insightful

    Another good cloud implementation. The video leaves the local network, goes to some server somewhere where anyone can access it, and then the server sends it to someone else. Of course, you COULD just store the video on the local SDcard in the camera, but then it wouldnt be cloud enabled.

    1. Re:The cloud by mikael · · Score: 2

      Cloud-enabled cameras allow you to stream your camera onto your smartphone. It's a nice idea so long as there isn't network congestion. Whenever I tried to stream video off my camera, the connection was unavailable. Then using wireshark, I once caught someone from AWS in Austin, Texas streaming the camera video.

      --
      Vintage computer adverts: http://www.vintageadbrowser.com/computers-and-software-ads
  8. Badly worded warnings will be ignored by timholman · · Score: 2

    "This occurred after the [family] connected the duplicate camera to their network and ignored the warning prompt that notified: 'Camera is already paired to an account' and left the camera running," she added.

    And there's a big part of the problem: the phrase 'Camera is already paired to an account' is just so much word salad to the average user. They will look at it for a moment, briefly wonder what those words might mean, then click through and forget about them.

    If you want people to take such warnings seriously, you need to make it much more explicit, as in: "WARNING: The camera is already paired to another user's account. If you continue to use this camera, that user will be able to view the images from it without your knowledge. Please contact Swann technical support at xxx-xxx-xxxx immediately."

  9. Shouldn't have been possible in the first place by Junta · · Score: 2

    The way it should work is for a device to check if it has a key, if it doesn't generates it internally. It should *not* be the case that a device have the private key injected by something externally generating the key. Moving private keys around is bad practice and everything that purports to be secure needs to generate the key on-device rather than accept an external key.

    --
    XML is like violence. If it doesn't solve the problem, use more.
  10. Mil-spec by sjbe · · Score: 2

    Is that like the "military-grade aluminum" Ford has been advertising as making their trucks out of now?

    In that context it probably means material that is mil-spec. Just means it has certain characteristics specified by and conforming to a standard set by the military. Doesn't mean it's necessarily anything special. Milspec parts often meet other standards too though milspec parts are typically more rigorous than many other standards available.

    Companies like to use this to do some promotional puffery that makes their product sound more impressive than it might otherwise but what they are saying isn't a lie and it does have some meaning.

  11. Poor Quality by Anonymous Coward · · Score: 2, Insightful

    Poor Programming and "DevOps" done by the team.

    -Poor manufacturing quality control [ duplicate key ]
    -Poor programming - duplicate key not detected
    -Poor testing - duplicate keys should be rejected
    -Poor security - duplicate keys should be revoked
    -Poor quality App Testing
    -Poor quality hardware/software integration - duplicate keys should be rejected by server, and a new key generated

    I build my own security cam with a raspberry pi, a CSI camera, and an infrared detector, it cost less then $100. It mails me snaps of motion, and doesn't need "cloud" access. It also avoids all these problems above.

  12. Four digit PIN by raymorris · · Score: 3, Funny

    Bank grade would be a four digit PIN.