Security Cameras and Smart Doorbells from Multiple Brands Have Serious Privacy Flaws

CISA has issued an urgent warning about serious security vulnerabilities in cameras and smart doorbells that use the Naxclow IoT Platform. The affected devices include the Smart Doorbell X3, X Smart Home, V720 camera, and ix cam brand cameras. All versions of these products have flaws that could allow attackers to impersonate your devices, intercept or manipulate your video communications, harvest login credentials on a large scale, or gain unauthorized access to your camera feeds. These are exactly the kinds of devices families install to feel safer, but the security flaws could actually put your privacy at risk.

If you own any of these camera or doorbell brands, your security and privacy may be compromised.

Hackers could potentially watch your camera feeds without your knowledge, seeing who comes and goes from your home. They could steal the passwords you use to access your cameras. They could even manipulate what you see on the camera feed, potentially showing you old footage while something is actually happening. This affects every household that has installed one of these devices, whether you bought it recently or years ago. You should take immediate action if you own one of these devices. First, unplug or disconnect these cameras and doorbells from power and your Wi Fi network right away. Do not use them until the manufacturers release security fixes. Second, change the password on any account associated with these cameras. Third, if you used the same password on other accounts, change those passwords too. Fourth, check your home network for any suspicious activity. Fifth, consider replacing these devices with cameras from more established, security focused brands like Arlo, Ring, or Nest, which have better track records for addressing security issues. When shopping for security cameras and smart home devices in the future, do your research first. Stick with well known brands that have dedicated security teams and regularly release updates. Read recent reviews and check for any security warnings before purchasing. Avoid cameras and doorbells that are very cheap or from brands you have never heard of, as they often cut corners on security. Always change default passwords immediately after installing any smart device. Enable two factor authentication if the device offers it. Register your devices with the manufacturer so you receive security alerts. Your home security devices should make you safer, not create new vulnerabilities for criminals to exploit.