Wyze says camera breach let 13,000 customers briefly see into other people’s homes - eviltoast
  • fubarx@lemmy.ml
    link
    fedilink
    arrow-up
    16
    ·
    9 months ago

    There are two events:

    1. AWS had an outage which froze their backend
    2. They added some sort of caching that messed up when brought up and let users see other devices.

    Seems like Problem 1 was with Wyze not handling disaster-recovery properly. Problem 2 is them not testing their new update and setting up proper access controls.

    Trying to blame AWS on their own screwup is rich.

    • Ottomateeverything@lemmy.world
      link
      fedilink
      arrow-up
      9
      ·
      9 months ago

      Problem 2 also shows they have no double checks on access to private video feeds. Mixing up what’s being requested at any step and not reverifying anywhere after that point just reveals fucking terrible security practices.