FTC Issues Warning of Insecure TRENDnet Home Surveillance IP Cameras
TRENDnet, a maker of home networking and security products, has agreed to settle charges brought on by the Federal Trade Commission (FTC) alleging that its "lax security practices" left consumers susceptible to remote viewing by hackers. Specifically, the FTC took issue with TRENDnet's SecurView line of cameras and the fact that they were being marketed as "secure."
"In fact, the cameras had faulty software that left them open to online viewing, and in some instances listening, by anyone with the cameras' Internet address," the FTC said.
According to the FTC, from at least April 2010 TRENDnet failed to used reasonable security to design and test its software, including a setting for the cameras' password requirement. Due to this, hundreds of consumers had their private feeds made public on the web, the FTC alleges.
This all came about when a hacker exploited the flaw and made it public back in 2012. Hackers then posted links to live feeds of almost 700 of TRENDnet's SecurView cameras. The feeds showed babies asleep in their cribs, children playing, adults moseying about, and other daily activities.
As part of the settlement, TRENDnet agreed not to misrepresent the security of its cameras or the security, privacy, confidentiality, or integrity of the information that its cameras or other devices transmit. TRENDnet's also prohibited from misrepresenting the extent a consumer can control the security of information the cameras or other devices store, capture, access, or transmit.
"In fact, the cameras had faulty software that left them open to online viewing, and in some instances listening, by anyone with the cameras' Internet address," the FTC said.
According to the FTC, from at least April 2010 TRENDnet failed to used reasonable security to design and test its software, including a setting for the cameras' password requirement. Due to this, hundreds of consumers had their private feeds made public on the web, the FTC alleges.
This all came about when a hacker exploited the flaw and made it public back in 2012. Hackers then posted links to live feeds of almost 700 of TRENDnet's SecurView cameras. The feeds showed babies asleep in their cribs, children playing, adults moseying about, and other daily activities.
As part of the settlement, TRENDnet agreed not to misrepresent the security of its cameras or the security, privacy, confidentiality, or integrity of the information that its cameras or other devices transmit. TRENDnet's also prohibited from misrepresenting the extent a consumer can control the security of information the cameras or other devices store, capture, access, or transmit.
