Three vulnerabilities were found in the Blink XT2 model of home security cameras, although only one seems to be an issue for customers. To take advantage of the first vulnerability, attackers must have physical access to the camera and provide hard-coded credentials that would provide them control. For the customer-facing issue, attackers have the potential to carry out man-in-the-middle attacks if the camera asks for software updates or network information. The third and final flaw that was discovered is associated with improperly sanitized network parameters passed to the camera. Researchers at Blink state that more information pertaining to the vulnerabilities will be released soon but for the time being they should make sure the firmware is updated to version 2.13.11 or later.
By: Dan McNemar It is not a new concept that criminals use the Darknet to