Ring Reportedly Gave Employees Access to Customer Video Feeds

Discussion in 'HardForum Tech News' started by Megalith, Jan 12, 2019.

  1. Megalith

    Megalith 24-bit/48kHz Staff Member

    Messages:
    13,004
    Joined:
    Aug 20, 2006
    Privacy-minded consumers who are seeking a security camera may want to avoid Ring: a recent report by The Intercept alleges the company’s employees have unlimited access to all video captured by Ring devices, which include video doorbells and stickup cams. A spokesperson claims otherwise, in that only publicly shared content is viewed for the purpose of improving the service.

    The Information described how in 2016, the company granted inexperienced engineers in its Ukraine offices access to a database that contained Ring customers' video histories. Sources also told The Intercept that executives and engineers in the US were allowed access to live feeds of customers' cameras. They also described how Ring engineers would check out their coworkers' cameras and tease them when they saw them bringing dates home or show videos to other employees when they saw something of interest.
     
  2. Eymar

    Eymar Limp Gawd

    Messages:
    232
    Joined:
    Sep 15, 2005
    Damn that is stupid. That is why companies have Alpha\Beta groups (who get the stuff for free) if they want real world data without compromising customer private data.
     
    steakman1971 likes this.
  3. Patton187

    Patton187 Gawd

    Messages:
    670
    Joined:
    Feb 12, 2012
    I never thought I'd hate technology advancements, but we are getting there.
     
    Jarod888 likes this.
  4. Mega6

    Mega6 [H]ard|Gawd

    Messages:
    1,441
    Joined:
    Aug 13, 2017
    HI Miss - yes, that's right - u need a doorbell in the shower. LOL
     
  5. Catboxer

    Catboxer [H]ard|Gawd

    Messages:
    1,045
    Joined:
    Feb 1, 2003
    As a security auditor, may this golden age never end.
     
  6. Disco_Stu_04

    Disco_Stu_04 Limp Gawd

    Messages:
    427
    Joined:
    Aug 18, 2003
    We're giving online strangers constant access to see into our lives by having a cloud security setup because we're concerned about the occasional visit by a IRL stranger/delivery guy.

    I was initially excited about these AIO doorbell systems but once I learned they were cloud/sub required I lost all interest. Maybe I'll do one of those Raspberry Pi projects.
     
    mavrocket likes this.
  7. Mega6

    Mega6 [H]ard|Gawd

    Messages:
    1,441
    Joined:
    Aug 13, 2017
    did it. my images still have to to through a mail server under ssl / tls not under my control through to get to my phone / internet.
     
  8. Endgame

    Endgame Limp Gawd

    Messages:
    188
    Joined:
    Jan 10, 2007
    Every try setting up an ip camera and then open vpn to get back to your internal network to view the feed?
     
  9. Mega6

    Mega6 [H]ard|Gawd

    Messages:
    1,441
    Joined:
    Aug 13, 2017
    no vpn, just ssl /tls under postfix, sendmail. motion detect of course. native pi camera. why connecting back in? makes no sense and double the trouble. two connections. vpn and internal.
     
  10. EODetroit

    EODetroit [H]ard|Gawd

    Messages:
    1,486
    Joined:
    Oct 20, 2004
    You put a camera or microphone in your home and connect it to the internet, unintended people gunna watch and listen.

    That's all anyone needs to know.
     
    Dead Parrot likes this.
  11. Mega6

    Mega6 [H]ard|Gawd

    Messages:
    1,441
    Joined:
    Aug 13, 2017
    if u can get out - someone can get in. dont assume because your posting on a message board through a web browser - you're any safer.
     
  12. sfsuphysics

    sfsuphysics I don't get it

    Messages:
    13,659
    Joined:
    Jan 14, 2007
    Well this is what you get when you have some cloud based security service that costs what? 5 to 10 a month?
     
  13. Dead Parrot

    Dead Parrot 2[H]4U

    Messages:
    2,374
    Joined:
    Mar 4, 2013
    Those old DVR based video camera security systems are starting to look like the way to go. Then setup some type of device to device VPN for remote access.
     
  14. lollerwaffle

    lollerwaffle Gawd

    Messages:
    666
    Joined:
    Feb 3, 2008
    I say people ought to know that companies and corporations will NEVER work in your interest unless it makes them money. Likewise, because data is today's gold, any data that can be harvested will be harvested, sold, sliced and diced. I don't think anyone can make a solid argument against that statement. Data IS gold and YOU are DATA, not a customer or a person, you're DATA. Even people who kind of understand privacy issues and the internet don't always make that connection. The fact that really, ANY data you put out there, ANY at all, will be sliced and diced, and it will be sold over and over until it becomes either useless or too low resolution. That's just part of a digital personality, which is what we are working towards, knowingly or not.

    That said and sorry for the caps, those 'Ring' devices and others provide a lot of tantalizing services that seem to be so convenient... one might just.. ignore the potential for abuse. Oh look at those commercials, people all over install them. So convenient, so nice, so.. communal and safe. Yeah I said communal, since you can share cams with neighbors. Is that not weird to people?!

    The former East German STASI would fucking lick their fingers for this shit, and we are fucking PAYING MONEY FOR THE DEVICES, then we complain but we don't do anything about it. Companies will say Oops Our Bad(TM) and nothing happens. People still buy these devices, fuck, gift them for christmas. Here, have a bug in your house, it's on us!

    I'm rambling, I know. But seriously people, don't install bugs in your own home.

    Oh and here's a funny anecdote. Some co-worker complaining how Microsoft collects data and all. I asked him if he has an Alexa or Google Assistant thing in his home. "Yeah, it's so great." I.. I don't know what to say without starting an argument you shouldn't have in your workplace.
     
  15. steakman1971

    steakman1971 2[H]4U

    Messages:
    2,433
    Joined:
    Nov 22, 2005
    This is incredibly reckless for Ring to do this. As another poster in the thread posted, have a beta group of people that understand what they are getting into. By default, the company should never have access.
    Ideally, the video would be encrypted to the servers and stored on the servers encrypted. Proper audit controls should be in place to track access internally.
    The company will say its for analytics or to improve the service (image/facial recognition?)
     
  16. Spire3660

    Spire3660 [H]ard|Gawd

    Messages:
    1,030
    Joined:
    Jan 5, 2005
    Why??? Even if that is true, you could encrypt/decrypt at the endpoints. I am having a hard time understanding why you would use email as the primary transport..
     
  17. SomeoneElse

    SomeoneElse [H]ard|Gawd

    Messages:
    1,718
    Joined:
    Jan 16, 2007
    This is the common argument from most companies today, they are all planning on selling your data. They collect it from you, "scrub" the most private info to remain legal and sell you out, because they need the info to "improve customer experience".
     
  18. katanaD

    katanaD [H]ard|Gawd

    Messages:
    1,987
    Joined:
    Nov 15, 2016

    so they dont even respect themselves for privacy concerns. thats about all you need to know..
     
  19. dgz

    dgz [H]ardness Supreme

    Messages:
    5,038
    Joined:
    Feb 15, 2010
    My boss use to give me access to all kinds of cameras when I had to build this multi cam feed app a few years go.

    These people don't mind? "No", he said. Some were pretty fucking wealthy. I think one guy had his own island in Greece. Didn't see his wife, though.
     
  20. lcpiper

    lcpiper [H]ardForum Junkie

    Messages:
    10,424
    Joined:
    Jul 16, 2008

    Wait up a sec?

    Are you really considering who walks up to your door bell as privacy data?

    I mean maybe this is just me, but I couldn't give a fuck if some smoes at this company can access video of who comes knocking at my front door, if they are picking their nose, or whatever.

    But maybe that's just me and I'm being unreasonable.
     
  21. Eymar

    Eymar Limp Gawd

    Messages:
    232
    Joined:
    Sep 15, 2005
    Lol, if you have to ask then I hope you don't work in anything security related. No offense. I'm mean in only takes a few seconds to think why this is an invasion of privacy: Ring camera is in secured/gated premise like an apartment building, if motion/remote activated can monitor any person employee has interest in, taking pictures of visitors without their permission (extreme case that person is in witness protection or something), etc.