Sorry for the Bloomberg link. If anyone has a better one, feel free to change it out. I have to agree with that last statement.
Sorry for the Bloomberg link. If anyone has a better one, feel free to change it out.
In a video seen by Bloomberg, a Verkada camera inside Florida hospital Halifax Health showed what appeared to be eight hospital staffers tackling a man and pinning him to a bed.
Another video, shot inside a Tesla warehouse in Shanghai, shows workers on an assembly line.
Kottmann said their group was able to obtain “root” access on the cameras, meaning they could use the cameras to execute their own code. That access could, in some instances, allow them to pivot and obtain access to the broader corporate network of Verkada’s customers, or hijack the cameras and use them as a platform to launch future hacks.
The hack “exposes just how broadly we’re being surveilled, and how little care is put into at least securing the platforms used to do so, pursuing nothing but profit,” Kottmann said.
Some follow-up from Cloudflare on what was done with their camera feeds and measures they take to protect their data: https://blog.cloudflare.com/about-the-march-8-9-2021-verkada-camera-hack/
Some follow-up from Cloudflare on what was done with their camera feeds and measures they take to protect their data:
According to a copy of the search warrant provided to Bloomberg News, the search was conducted as part of a U.S criminal case against Kottmann in the Western District of Washington. The warrant requested documents related to hacking as well as information on cryptocurrency holdings. Kottmann has been accused of unauthorized access to protected computers, identify theft, and fraud.
...
The search warrant said that the raid was in connection with an FBI investigation into “the hacking of computer databases and the subsequent theft and distribution of information including source code, confidential documents and internal user data.”
...
Kottmann, 21, said they hacked Verkada because they were inspired by “lots of curiosity, fighting for freedom of information and against intellectual property, a huge dose of anti-capitalism, a hint of anarchism -- and it’s also just too much fun not to do it.”
...
Rather than use the access to Verkada’s systems to snoop for weeks or months on its clients, Kottmann contacted a journalist shortly after the breach, and the company cut off the hacker’s access.
Sorry for the Bloomberg link. If anyone has a better one, feel free to change it out.
I have to agree with that last statement.
Some follow-up from Cloudflare on what was done with their camera feeds and measures they take to protect their data:
https://blog.cloudflare.com/about-the-march-8-9-2021-verkada-camera-hack/
Tillie Kottmann, one of the hackers behind this, has gotten their house raided, and all their electronics have been seized.
Here's a news article:
Swiss Police Raid Apartment of Verkada Hacker, Seize Devices - Bloomberg link
...
...
...