- People are using #WheresLindsey to criticize Graham over Trump ‘lynching’ defense Tuesday 8:22 PM
- 2 Proud Boys sentenced to 4 years in prison for attacking antifa protesters Tuesday 7:20 PM
- Paul Joseph Watson is very upset by bartender serving beer with her butt Tuesday 6:24 PM
- Twitter developing a policy to combat deepfakes Tuesday 5:28 PM
- The Nate Diaz vs. Jorge Masvidal bout at UFC 244 is perfect for NYC and its fight mecca Tuesday 5:27 PM
- Alexis Bledel named most dangerous online celebrity Tuesday 5:02 PM
- Kylie Jenner trademarks ‘rise and shine’ after meme success Tuesday 4:50 PM
- ‘Watchmen’ website expands what you know about its alt-history Tuesday 4:31 PM
- Smoke ’em, pass ’em Week 8: Mark Walton szn Tuesday 4:26 PM
- Venmo’s first-ever credit card to launch in 2020 Tuesday 3:46 PM
- Wet Kylo Ren may turn everyone to the dark side Tuesday 3:15 PM
- Man allegedly targeted trans women on dating app, robbed them at knifepoint Tuesday 3:02 PM
- Researchers expose how Amazon Echo and Google Home can steal passwords Tuesday 2:47 PM
- Facebook removing Instagram Story filters that mimic plastic surgery Tuesday 2:16 PM
- Mom solves ‘ghost baby’ image mystery after viral post Tuesday 1:23 PM
On Thursday, Google confirmed that a bug in its Nest security cameras could have allowed users to be spied on, Wirecutter reports.
The issue was first raised by a user on Facebook who recently sold his Nest Cam Indoor yet was still able to access its feed. The problem involves Wink, an app that lets people manage multiple smart devices regardless of their developer. The Facebook user noted that despite carrying out a factory reset on his Nest camera before selling it, his Wink account remained connected to the device, allowing him to view snapshots of the buyer’s live feed.
Wirecutter tested the vulnerability on its own Nest Cam by linking it to a Wink account and then performing a factory reset. The publication also found it was receiving “a series of still images snapped every several seconds” via its Wink account.
“In simpler terms: If you buy and set up a used Nest indoor camera that has been paired with a Wink hub, the previous owner may have unfettered access to images from that camera,” Wirecutter says. “And we currently don’t know of any cure for this problem.”
Google responded to the incident after Wirecutter’s story broke Wednesday and announced it had fixed the problem. The tech company says a factory reset should now unlink any Wink account from its cameras.
“We were recently made aware of an issue affecting some Nest cameras connected to third-party partner services via Works with Nest,” a spokesperson told Wirecutter. “We’ve since rolled out a fix for this issue that will update automatically, so if you own a Nest camera, there’s no need to take any action.”
Although the issue was quickly fixed, it’s unknown how long the bug was active and whether it was actively exploited.
- Hacker infiltrates Nest cameras to gain PewDiePie subscribers
- Family says hacker sent fake North Korean missile warning through Nest camera
- Parents set up cameras in teen redditor’s room after catching him masturbating
Got five minutes? We’d love to hear from you. Help shape our journalism and be entered to win an Amazon gift card by filling out our 2019 reader survey.
Mikael Thalen is a tech and security reporter based in Seattle, covering social media, data breaches, hackers, and more.