A glitch in the Wyze cloud service gave some users access to cameras in other people’s homes
Wyze Labs is investigating a security issue during a maintenance failure of the smart camera system. Some customers were able to access other users’ cameras in the Events tab of the app.
Wyze itself claims that the camera connection issues are related to the AWS cloud service, which caused the servers to reboot. “We are aware of an issue with our AWS partner that has affected device connectivity and caused login difficulties. We are taking steps to resolve the issue from our side and are also working with AWS,” the company said on February 16.
Later that day, Wyze said it was still trying to restore all cameras.
At the same time, the company disabled the “Events” tab in the application due to a “possible security issue.” Although Wyze did not explain what caused this behavior, some customers reported seeing streams from other users’ cameras in this tab.
According to them, they also received reports of movements in other people’s houses in the absence of the owners.
“My sister texted me in a panic because her app is showing someone else’s video feed,” said one customer, while others advised turning off the cameras until these ongoing issues are fixed.
A Wyze representative noted that “some users were able to see video thumbnails from other people’s cameras.” The company has already received 14 reports about the incident and is identifying all affected users.
In 2022, it became known that Wyze knew about the vulnerability in its equipment for three years, but did nothing about it. The vulnerability was found in WyzeCam v1 video surveillance cameras. Using it, hackers could monitor other people’s homes.