I guess that lowest bid supplier didn't work out so well for their new product space.
US Govt Punishes IP Camera Manufacturer Trendnet
I
IP camera manufacturer TRENDnet has settled with the FTC after the agency says the company’s advertising, combined with failure to use “reasonable security to design and test its software” resulted in unfair trade practices. Because of security flaws in more than 20 models of TRENDnet cameras, customers’ private camera feeds were available over the Internet from devices sold to them to secure their homes, according to the FTC. In this note, we review the FTC complaint, the outcome and what the decision means for the industry.
The Complaint Reviewed
********'* ****** **** ***, ** ** turns ***, ********** ******* "**********" ********* a **** ** *** ********* ***********:
********* ** *** *** ********* [**** no ****** *********], * *********** ** the “****** ***** ****** **************,” * setting **** ********** **** *********** ***********, allowed **** ***** ** ** ******** regardless ** * ****’* ******** ********. The ***** **** ********* **** ****** after ******* ********* *** **** *** posted ***** ** “****** *** ** the *******” ******. “*** ***** ********* babies ****** ** ***** *****, ***** children *******, *** ****** ***** ***** their ***** *****,” **** *** ***.
*** *** **** **** *** ******* transmitted *** ****** **** ***** *********** unencrypted, ****** ** ********* * ******* monitor *** ****** *****-***** ******** ******* (delaying *** *********** ** *** *****) and ****** ** ** *** **** of ******** ****** ** *** ********. TRENDnet ******** * ************ ***** *** *******.
********’* ********* ******* *** ******* **** “secure” ** ******** *** *********** ********, says *** ***. ** *** *******, packaging *** ***** **************, ******** ******* *** cameras ***** **** ******* * ****’* home, ******, ******** ** ********. *******, because ******** ****** ** ******* ******** **** unauthorized ****** ** **** *****, **** “caused, ** [***] ****** ** *****, substantial ****** ** ********* **** ** not ****** ** ************** ******** ** consumers ** *********** *** ** *** reasonably ********* ** *********,” **** *** FTC ** *** *********. “**** ******** was, *** **, ** ****** *** or ********.”
The ******** ********
** *********, *** *** ********* **** TRENDnet settled ******* **** ** ****** ** protect *** *****' *******. ******** ******** has ************ **** *** **** *** patched, ** ******** ** * ******* order ** ** *** ********* ** admit ** **** *** ** *** FTC’s **********.
*** ******* ***** [**** ** ****** available] **** ******** **** “*************** *** security ** *** ******* ** *** security, *******, ***************, ** ********* ** the *********** **** *** ******* ** other ******* ********” *** “*************** *** extent ** ***** * ******** *** control *** ******** ** *********** *** cameras ** ***** ******* *****, *******, access, ** ********.” *** ***** ****** all **************, *********** *********, ************ *** user *****, *********, *** *** ********* disseminated ** *** *******.
** **** ******** *** ******* ** establish * ******** *******, ** *******, to ******* ******** ***** *** ****** user ***********. *** ******* **** **** a *****-***** ******** ******** *********** ** ensure ********** ** *** ***** ***** two ***** *** *** **** ** years. *** ****** *** **** ********** will ** ********* ** *** ***. All ** ***** ********* **** ** made ********* ** *** *** *** ********** upon ******* *** *** **** **** years.
*******
******** ** * ********** ****** ****** ** IP ****** ****** -- ********* ** the *********, *** **-****** ******* *** $5.28 ******* ** ** ******* ***** in ****, ****** ** $*.* ******* in ****. ******** * *** ******* selling ***** (*** $**), **** ***** mean ~***,** ** ******* *** ****, though ****** *** ** *** ********, non *** *****. *******, *** ********* impact **** ******** *** ** *** industry ** ***.
Impact ** ***** *************
** *** **** *** *****, *** FTC *** **** ** ****** ** crack **** ** **** ************* *** commit ******* **********, *** ********* ********* security ********** *** *** **** ** the ***** **** ** *** ******** that ******* ****** ***** **** ******* permission. **** **** ****** ** ** eye-opener *** ****** ************* *** **** claims ***** ********** ****** ** ********** harm. ** * ******* ** ******** their ******* *** **** * ******, place ** ***** ****, *** ***** cameras **** ** ***** **** ***** negate **** ****** ** *********** ***** harm ** *** ****, **** **** is ** ****** ***** ********, ********* to *** *** ** **** ********. Manufacturers ****** ** **** ******** ***** the ****** ****’** ****** *** *** vulnerabilities **** *** ****. *** *** has ************ **** **** **** **** action.
**** ** *** *** **** *********** given **** *** ******** ******** ******** has **** ************ *** ** ************ information ******** (******* ******* ******** ***,******* ******** ******).
Comments
Luis Carmona
Sep 05, 2013