Tenable Research, a cyber exposure company, has found seven vulnerabilities in Blink cameras which could allow hackers to:
- Livestream footage
- Listen to audio output
- Perform Distributed Denial of Service, or DDoS attacks
- Steal data
- View video and photo storage
- Add or remove devices from account
- Block all communications from camera
- Send spam.
These vulnerabilities were found in the Blink XT2 specifically, Blink’s latest indoor/ outdoor camera.
The security flaws in the Blink XT2 would allow the hacker to gain access to the use’s personal information and home networks, according to a recent press release from Intelligent CIO. Renaud Deraison, Tenable’s co-founder and Chief Technology Officer, said,
“Manufacturers of IoT devices have an opportunity and an obligation to ensure that effective security is baked into the overall design from the start and not bolted on as an afterthought. This is especially critical when the device in question is a security camera.”
Since Tenable has pointed these security flaws to Blink, which is owned by Amazon, Amazon has created and released security patches.
Security Flaws Found In Nest Cameras
Blink is not the only smart security company to have security vulnerabilities in their cameras. Last summer, a division of Cisco Security called Talos discovered vulnerabilities on the Nest Cam IQ Indoor camera. The vulnerabilities were on the camera’s weave binary, which hands setup and initial communication with other Nest devices. Similarly to Blink, Nest Labs updated the Nest Cam IQ Indoor’s software to fix these vulnerabilities.
Nest has all had issues handling their customers’ private information like email addresses and passwords, which were found on the web. However, Nest claims that this wasn’t the fault of their software, but rather anonymous third parties. Rishi Chandra, Nest’s Vice President of Product, recommended that users disable compromised accounts, change passwords to make them all unique, enable two-step verification, update routers and be vigilant about phishing emails. As phishing emails get increasingly sophisticated, protecting personal information online is more difficult than ever.
Does the Blink XT2 record?
Yes, the Blink XT2 records footage whenever it detects motion. You’ll be able to view cloud storage in the Blink Home app.
Does Blink have a monthly fee?
No, there is no monthly fee to use Blink.
Are Blink cameras any good?
Blink cameras are good when it comes to their 1080p HD video, infrared night vision, two-way audio, and Alexa integrations. However, they are lacking when it comes to wide fields of view, local storage, cloud storage over two hours, person detection, and Google Assistant integrations.