[ad_1]
Last December, the first public statement by Anker on the matter of Eufy security cameras not so securein respect of which we wrote that it contained “some important admissions but also some gaps”. Now, with the second release, Anker is finally clear, and she admits that the video stream of her cameras, in theory constantly protected by encryption, in reality was not always.
The problem – in short, details here – was that Eufy cameras could send images to the cloud without the owners knowing anything about it, and even if they weren’t subscribed to the cloud. That wasn’t all, because apparently anyone who had the IP address of a camera and a media player to feed it to, such as VLC, could have remotely watched the real-time footage of that camera.
Now Anker during a long email exchange with colleagues from theverge.com admitted its Eufy security cameras lack native end-to-end encryption, e which can and have produced unencrypted video streams, unprotected, which potentially could have been seen by anyone. On the one hand, the admission, on the other, the reassurance about the resolution of the problem.
The company has made it known that is updating every Eufy camera to implement WebRTC technology which is protected by encryption by default. So every request to access the video stream coming from the Eufy web portal will result in a video stream with end-to-end encryption, impossible to intercept.
[ad_2]
Source link
