Remove/disable your V1 Wyze Cam if it's still in use

Selling a camera for three years when you knew it had a serious vulnerability is not cool. What a way to ruin a security brand.

That’s disappointing, but lack of ongoing support is probably a result of the low price point they were sold for.

Yeah I’ve been using and recommending these cameras all this time. It’s a shocking breach of trust, and I agree with the Verge, I’m done with Wyze. Such a shame.

Not gotten to Security Now, did Steve say anything about this? Didn’t he also praise them in the past?

Sad to see companies go down like this.

I also find Bitdefender’s part in this questionable. If Wyze had been busy getting a fix out there, I could understand that they waited a few weeks or months (E.g. the 2 major email server vulnerabilities last year that took nearly 6 months to fix, but both Microsoft and the open source group were working closely with the security companies to fix the problem as quickly as possible.

But Wyze didn’t respond for over a year! I’d want to know and would disable the products as quickly as possible!

I swear it seems like we are going to say this about EVERYTHING. Sad. I mean even government staff can’t be trusted. A friend of mine had their wallet stolen from their checked luggage. Yes, TSA goes through checked luggage, I get the little notes from them all the time. My friend was naive in thinking TSA wouldn’t steal their wallet, though.

Are we naive in thinking these tech companies touting “security” will share security problems as soon as they’re told about them? Say I switch to Ring or some other brand for security cameras? Next year I hear a similar story about them?

That’s bad any recompense from TSA?

Maybe HOP can cover how to travel with your kit, bags you recommend and stuff?

Problem is that The Verge did not fully research the issue at hand before publishing the initial story. Someone has to gain access to your wifi network to be able to get the device’s ID which they can use to exploit the camera outside of your network. the verge updated the story twice on March 31st.

They were told to file a report on the website. Even the police said to file a report on the TSA website. But yeah, my main point is we all have to have a guard up. At least it seems that way, unfortunately. Yet if we dont have some level of trust, we’re on our own.

Sure, but why not mention this information three years ago to the masses, Wyze?

New laws in Europe and proposed laws in the States would mean they have no choice but to report them publicly, if they affect users/customers and their data, otherwise they face hefty fines.

Yes. They will do what they need to do in order to make money unless forced to do otherwise. Wyze should be prevented from selling any iot devices by the FCC, in my opinion.

Okay, so maybe it’s less severe than initially indicated, but that only further begs the question of why they wouldn’t have initially published a warning about the issue. The fact that they hid it for so long makes it seem like it must be more severe than they’ve let on since word escaped.