"'Thousands' of Verkada Cameras Affected by Hacking Breach"
The Silicon Valley startup Verkada, which provides cloud-based security camera services, has experienced a significant security breach. A group of hackers gained access to live feeds of surveillance cameras in schools, police departments, prisons, hospitals, and health clinics. The hackers also gained access to surveillance footage from the electric car manufacturer Tesla and the software provider Cloudflare. An official statement from a Verkada spokesperson says that the company notified law enforcement and disabled all internal administrator accounts to prevent unauthorized access. They also revealed that the company's internal security system is currently investigating the scale and scope of the problem. The hackers behind the breach claim to have accessed archived video and audio in addition to live feeds. The breach is considered unsophisticated in that the hacking group used a super administrator account to obtain access to the cameras. According to the spokesperson, the group found the administrator account's username and password publicly exposed on the internet. This incident brings further attention to the need to improve cyber protection for physical security devices. Experts have called for more awareness of potential vulnerabilities in such devices and the increased implementation of security solutions that address both cyber and physical attacks. IFSEC Global's Video Surveillance 2020 Report shows that over 70 percent of security end-users and consultants have expressed significant concerns about the vulnerability of their surveillance systems to cyberattacks. This article continues to discuss the Verkada security camera breach and the inadequate protection of surveillance systems.
Dark Reading reports "'Thousands' of Verkada Cameras Affected by Hacking Breach"