PogoWasRight.org

Menu
  • About
  • Privacy
Menu

Someone Is Taking Over Insecure Cameras and Spying on Device Owners

Posted on June 22, 2018June 25, 2025 by Dissent

Catalin Cimpanu reports:

Many brands of webcams, security cameras, pet and baby monitors, use a woefully insecure cloud-based remote control system that can allow hackers to take over devices by performing Internet scans, modifying the device ID parameter, and using a default password to gain control over the user’s equipment and its video stream.

In the last nine months, two security firms have published research on the matter.

[…]

The privacy implications are enormous

All these rebranded devices use the same Gwelltimes cloud service and Gwelltimes app (named Yoosee) to let customers manage devices. The Yoosee app has over 1 million installs through the Google Play Store alone, meaning that millions of video streams can be easily accessible through this service.

“Obviously, the device and the cloud service is not GDPR compliant,” SEC Consult said. “Here we have a Chinese company that is never mentioned anywhere, developing insecure products and sending our most private information home to their Chinese servers.”

Read more on BleepingComputer.

No related posts.

Category: BreachesBusinessSurveillance

Post navigation

← FTC Announces Hearings On Competition and Consumer Protection in the 21st Century
SCOTUS opinion in Carpenter v. United States is a win for privacy advocates →

Now more than ever

Search

Contact Me

Email: info@pogowasright.org

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

Categories

Recent Posts

  • Microsoft’s controversial Recall feature is now blocked by Brave and AdGuard
  • Trump Administration Issues AI Action Plan and Series of AI Executive Orders
  • Indonesia asked to reassess data privacy terms in new U.S. trade deal
  • Meta Denies Tracking Menstrual Data in Flo Health Privacy Trial
  • Wikipedia seeks to shield contributors from UK law targeting online anonymity
  • British government reportedlu set to back down on secret iCloud backdoor after US pressure
  • Idaho agrees not to prosecute doctors for out-of-state abortion referrals

RSS Recent Posts on DataBreaches.net

  • BreachForums — the one that went offline in April — reappears with a new founder/owner
  • Fans React After NASCAR Confirms Ransomware Breach
  • Allianz Life says ‘majority’ of customers’ personal data stolen in cyberattack
  • Infinite Services notifying employees and patients of limited ransomware attack
  • The safe place for women to talk wasn’t so safe: hackers leak 13,000 user photos and IDs from the Tea app
©2025 PogoWasRight.org. All rights reserved.
Menu
  • About
  • Privacy