(Bloomberg) – A group of dice hackers have obtained a valuable amount of data from security cameras recovered by the startup of Silicon Valley Verkada, logging access to the live broadcasts of 150,000 emergency rooms within hospitals, companies, police departments , prisons and schools.
Among the companies that have been selling the vehicles are the Tesla automaker and Cloudflare software maker. In addition, hackers can watch videos from the interior of health clinics for women, psychiatric hospitals and Verkada offices. Room cameras, including hospitals, use facial recognition technology to identify and categorize captured people in their images. The hackers aseguran also have access to the archive complete the video of all the customers of Verkada.
And a video visit by Bloomberg, a Verkada dentist at Halifax Health Hospital in Florida, showed that the hospital was also staffed by a man and a move-in against a bed. Halifax Health appears in the Verkada public web site in a case study titled: “How to Get a Florida Medical Attention Provider Updated and Implementing a HIPAA Compatible Security System”.
One of our vulnerability vulnerability systems
The filtering of data was carried out by a group of international hackers and the intention to demonstrate the omnipresence of video vigilance and the facility with which one can access these systems, says Tillie Kottmann, one of the hackers who attributes of having compromised the Verkada system, based in San Mateo, California. Kottmann, who uses binary options, previously attributed the credit for accessing the Intel Corp. chip maker. a car manufacturer Nissan Motor Co. Kottmann argues that his reasons for piracy are “a lot of curiosity, laughter at the freedom of information and against intellectual property, a large dose of anti-capitalism, a bit of anarchism, and also because it is too much fun to do”.
“We will deactivate all the accounts of the internal administrator to avoid any access without authorization”, said a representative of Verkada in a communication. “Our internal security team and the external security company are investigating the scale and severity of this potential problem.”
A person with knowledge of the matter said that the director of security of Verkada information, an internal team and an external security company are investigating the incident. The company is working to notify customers and establish a support line to respond to questions, say the person who solicited the anonymity to conduct a course investigation.
Also you can be interested:
Representatives of Tesla, Cloudflare and other companies identified in this story did not respond immediately to the requests for comment. Representatives of the prisons, hospitals and schools mentioned in this article will not comment or do not respond immediately to the requests for comments.
A video on which access Bloomberg has an official and a police station in Stoughton, Wisconsin, interviewed a hombre esposado. The hackers aseguran also obtained access to the Sandy Hook primary school security cameras in Newtown, Connecticut, in 2012, an armed man killed more than 20 people.
The 330 security cameras inside the Madison Condo’s cell in Huntsville, Alabama are also available for hackers. Verkada offers a function called “Person Analysis”, which allows a client to “search and filter images according to many different attributes, including gender races, the color of the rope and including the roster of a person”, says one publication of Verkada’s blog. The Bloomberg display images show that the cell inside the cell, some of the cults are the inside of the ventilation ducts, thermostats and defibrillators, screen the windows and the personal penitentiary using facial reconnaissance technology. The hackers point out that pudieron has access to ‘n transmissions and videos archived, in some cases including audio of interviews between police officers and suspects of crimes, all in high definition resolution known as 4K.
The very sophisticated methods of driving
Kottmann says that his group obtained “administrator” access to the rooms, which means that the podium uses the rooms to execute its own code. This access can, in some cases, be allowed to enter the corporate network of Verkada’s clients, well, secure the rooms and users as a platform to launch future attacks.
Obtaining this degree of access to the chamber does not require an additional procedure, and it involves a incorporated function, said Kottmann.
The hackers’ methods were not sophisticated: they gained access to Verkada through a “super administrator” account, which allowed them to mirror the cameras of all their customers. Kottmann reported that the number of users and counters for an administrator account to find publicly available items on the Internet. After Bloomberg was contacted by Verkada, the hackers lost access to video sources and archives, said Kottmann.
Verkada, founded in 2016, sells security cameras to those whose clients can join and manage an internet trip. In the year 2020, US $ 80 million will be reinvested in venture capital funds, valued by the company at US $ 1,600 million. Among the investment investors is Sequoia Capital, one of Silicon Valley’s most ancient firms.
Kottmann says that during the logging operation we will download the complete list of miles of customers of Verkada, as well as the general balance of business, which enumerates assets and liabilities. As a closed capital company, Verkada does not publish its financial statements. Kottman said the hackers included observing the work of a Verkada employee who had installed one of the cameras inside his home. One of the clips guarded by the employee completing a breakout with his family.
“If you have a company that has bought this camera and it is located in sensitive places, it is possible that it does not have the expectation that, in addition to being monitored by the security team, there is no administrator in the camera company también esté observando ”, dijo Eva Galperin, director of cybersecurity of the Electronic Frontier Foundation (EFF, by its seals in English), ‘n vreemdeling Bloomberg informo sober infiltration.
Security cameras and facial recognition technology are used within the scope of corporate offices and factories to protect and protect patent information within an internal facility, said EFF Galperin.
“There are many legitimate reasons to be vigilant within a company, Galperin said. “The most important part is having the informed consent of its employees. In general, it is within the employee manual that this is not the case ”.
VIDEO | Dirigent arrolla a mujer de la tercera edad, se dio cuenta, pero se fugó
//////
Note Original: Hackers expose Tesla, prisons violate 150,000 security cams
(Correction in the octave conference at the police station announcement)
For more articles like this, please visit us at bloomberg.com
Join now to stay ahead of the most trusted business news source.
© 2021 Bloomberg LP