• Home
  • News
  • Artificial Intelligence
  • Internet of Things
  • Open Source
  • Hardware
  • Software
  • Security
  • Whitepapers
  • Industry Voice
  • Data Strategy Spotlight
  • Newsletters
  • Whitepapers
    • Inqlogo 120x194
      Five things you should look for in choosing a Testing provider

      Choosing a Testing Partner can be complex.  So what do you look for?  This guide offers insight into the qualities you must look for in choosing a Testing provider.  Download now to learn more.

      Download
      Inqlogo 120x194
      Your questions answered: How to protect your data in the cloud

      The number of successful cyberattacks per year per company has increased by 46% over the last four years. But what really needs to be considered when exploring a solution? What questions need to be asked? Download to find out...

      Download
      Find whitepapers
      Search by title or subject area
      View all whitepapers
  • Follow us
    • Twitter
    • Newsletters
    • Facebook
  • Newsletter
  • Industry Voice
  • Data Strategy Spotlight
The Inquirer
The Inquirer
  • Home
  • News
  • Artificial Intelligence
  • Internet of Things
  • Open Source
  • Hardware
  • Software
  • Security
  • Trending
  • General election
  • Huawei sues FCC
  • Xerox vs HP
  • Galaxy S11
  • McAfee 2020
The Inquirer
  • Security

Swann cameras 'fixed' after researchers uncover spying flaw, again

Swann Vexxed-Us: Mis-Matches

Swan
We blame Natalie Portman....
  • Chris Merriman
  • Chris Merriman
  • @ChrisTheDJ
  • 26 July 2018
  • Tweet  
  • Facebook  
  •  
  •  
  • Send to  
0 Comments

SMART SECURITY COMPANY Swann is in trouble again after researchers discovered that a minor tweak could give users access to other users camera streams.

The news comes after an earlier incident which caused several customers to make similar complaints. Five European security analysts investigated Swann after the last revelation. They are Ken Munro, Andrew Tierney, Vangelis Stykas, Alan Woodward and Scott Helme.

Swann acknowledges the issue, saying that it was limited to one camera, the Swann Smart Security Camera, which is widely available since its release in October 2017.

However, although the Australian company and its Israeli software partner OzVision say the issue has been resolved, there's still concern that there could be a third or fourth problem for Swann waiting in the wings (geddit?).

Adam Brown, manager of security solutions at Synopsys said: "I personally have experience with Swann cameras - I used to have one, albeit different from the one in the report. I found that the camera feed itself could be accessed directly from the network the camera was on, and there was some access control over that video feed - a hardcoded password as I remember - this is bad practice.

"If that camera was placed directly on the internet (not behind a firewall) then prying eyes could potentially see what my camera could see. Obvious lax security controls indicate systemic failings. Without speculating on the technicalities of what went wrong here, I would surmise that the software security initiative at Swann is either lacking or could benefit from some deliberate improvement driven from management.

"The camera market is catching up in cybersecurity. Leading Chinese manufacturers are integrating privacy and security into their cameras and infrastructure. Privacy and security are going to be vital for the camera industry, itself placed as a security solution."

The researchers discovered that simple freeware packages could be used to intercept data from OzVision to Swann. All they had to do was change the camera serial number in the app and they'd have access to that camera - along with a way to identify different cameras easily.

"Swann was able to detect the subsystem Ken Munro and his team were attempting to hack and promptly addressed the vulnerability," said a spokeswoman for Swann

"This vulnerability did not apply to any other Swann products. We have not detected any other such attempts." μ

Further reading

  • Security
Your robot vacuum cleaner might be spying on you, sucker
  • 20 Jul 2018
  • Security
Swann camera customers report receiving the wrong footage
  • 28 Jun 2018
  • Hardware
Smartwatches and fitness trackers can spy on users, Kaspersky warns
  • 31 May 2018
  • Gadgets
SwannOne takes on Samsung with third-party compatible connected home suite
  • 17 Sep 2015
  • Tweet  
  • Facebook  
  •  
  •  
  • Send to  
  • Topics
  • Security
  • Security
  • smart home

INQ Latest

Comet Lake-S leaks keep hitting earth
Intel Comet Lake-S leak teases AMD-chasing six-core Core i5-10600

Hype for HyperThreading

  • Chips
  • 13 December 2019
Apple's parental controls in iOS 13.3 can be easily bypassed
Apple's parental controls in iOS 13.3 can be easily bypassed

Hey kids, leave them iPhones alone

  • Software
  • 13 December 2019
Opera GX brings gaming-led browsing to macOS
Opera GX brings gaming-led browsing to macOS

The Mac lady sings

  • Software
  • 13 December 2019
Google Assistant gets 'Interpreter Mode' on iOS and Android
Google Assistant gets 'Interpreter Mode' on iOS and Android

Babel in yo ear

  • Software
  • 13 December 2019
Back to Top

Most read

Apple's iPhone 12 won't see a significant price increase, claims Kuo
Apple's iPhone 12 won't see a significant price increase, claims analyst
Comet Lake-S leaks keep hitting earth
Intel Comet Lake-S leak teases AMD-chasing six-core Core i5-10600
FTC might order Facebook to stop integrating Instagram, Messenger and WhatsApp
FTC might order Facebook to stop merger of Instagram, Messenger and WhatsApp
Windows 7 goes end-of-life in a month
Windows 7 goes end-of-life in a month
Galaxy S11 specs, release date and price: In-the-wild images show chunky camera hump
Galaxy S11 specs, release date and price: In-the-wild images show chunky camera hump
  • Contact
  • Marketing solutions
  • Enterprise IT Events
  • Incisive Media
  • Terms & conditions
  • Policies
  • Careers
  • Twitter
  • Newsletters
  • Facebook

© Incisive Business Media (IP) Limited, Published by Incisive Business Media Limited, New London House, 172 Drury Lane, London WC2B 5QR, registered in England and Wales with company registration numbers 09177174 & 09178013

Digital publisher of the year
Digital publisher of the year 2010, 2013, 2016 & 2017