Facebook isn't the best source for facts, but this claim got my attention:
For those who install Eagle Eye, can you really spy on customers anytime without their knowledge?
I'll reach out to Eagle Eye for comment too.
Can Eagle Eye Installers 'Spy On Customers Anytime'?
U
Undisclosed #1
May 29, 2018I think it is common for integrators to maintain some form of remote access to customer systems. With many/most systems, customers can theoretically disable remote access by their integrators through standard account-management best-practices (eg: change passwords, disable unused accounts). Eagle Eye's reseller model may prevent this from working the same way though.
JH
Jay Hobdy
May 29, 2018How is this any different than any other VMS? I can pull up cameras for just about every account we support.
As UD1 mentioned, maybe Eagle Eye does not have a method for preventing the dealer from having access.
Brian Rhodes
May 29, 2018But your accounts know of and consent to 'remote access' accounts right?
I'm curious to understand if consent is need for the Eagle Eye platform.
JH
Jay Hobdy
May 29, 2018Well for us it's not a formal process
Us: Hey we finished your system. We created an account called XXX so we can log in and check things. We also are keeping the admin password to ourselves to ensure you do not change anything you shouldn't. If you ever need it,let us know and we will log in, change it,and give you the password. But you will be responsible for any configuration issues.
Customer: Cool, we don't want to deal with that.
Keep in mind 90% of what we do is Dahua and not enterprise clients.
U
Undisclosed #2
May 29, 2018Can Nest technicians spy on Nest camera users?*
*Technically, not legally.
Hans Kahler
May 29, 2018Full Disclosure - I work for Eagle Eye
It is possible for a system to be configured so that an installer can view the cameras. However, it's also possible for end users to remove that access, and only add it back if they need help/support.
This is in control of whoever the admin(s) are for the end user.
U
Undisclosed #2
May 29, 2018However, it's also possible for end users to remove that access, and only add it back if they need help/support.
What about data that goes to the cloud? Isn’t that under Eagle Eye’s control?
Hans Kahler
May 30, 2018Yes, data is stored in the cloud. Yes, it's on our servers. So yes, it's under our control.
U
Undisclosed #3
May 29, 2018Hans Kahler
May 30, 2018Brian Rhodes
May 29, 2018Thanks Hans. That sounds fairly typical. Are Eagle Eye installers encouraged to NOT include access accounts like this?
You say 'it is possible', but do installers have these accounts by default?
Hans Kahler
May 30, 2018Like many manufacturers, we have a large network of dealers. I'm not sure what each dealer encourages each end user to do. Many of our dealers provide more than just installation service to end users, as is mentioned above by a couple of other folks. Some of our dealers provide monitoring to customers, some do not.
U
Undisclosed #2
May 30, 2018On the other hand, is there even one known case of an accusation of a dealer ‘spying’ on their customer?
Oh, big brother!
New discussion
Ask questions and get answers to your physical security questions from IPVM team members and fellow subscribers.
Newest discussions