and for LTT on the subject
“The doorbell’s camera was uploading facial recognition data from the camera to Eufy’s cloud servers with identifiable information attached,”
Yeah… Nice.
Does that really come as a surprise to anyone though ? After all these ‘coincidental’ backdoors firmware bugs in Hikvision and Dahua cams, the Unifi protect data breach they tried to cover up, Nest and Ring sharing footage with law enforcement without consent, etc. That’s why you always put cameras on a VLAN or even on a physically separate network, without internet access, regardless of the camera manufacturer. You just can’t trust anyone with this stuff. If a camera doesn’t work without the cloud, that’s a hard pass. The only safe place for data like this is your own local storage.
2 Likes
rebuttal here, take with a grain of salt
The Hook’s Up video is just trying to champion Eufy. He conveniently leaves out the remote activable streams and claims “there is no proof” (well no shit, you do not post a critical vulnerability like that to the public).
The Verge was able to independently verify the remote streams claim.
1 Like
Any chance this failure on Eufy’s part could lead to a local integration with their cameras, or even better, a substitute for the never-delivered RTSP support in the wired doorbell?
1 Like
1 Like