All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

Flock Safety's AI Surveillance Cameras Found Exposed to Open Internet Without Password Protection

By

chaps

5mo ago· 4 min readenNews
Bagel score 75 of 100
75/100
Toasty
Bagelometer

Crackles when you bite it. Shows the baker did the work.

Score75TypenewsSentimentnegative

Summary

A journalist discovered that Flock Safety left at least 60 of its AI-powered Condor PTZ surveillance cameras exposed to the open internet without any password protection or login requirements. The cameras were live-streaming real-time footage publicly accessible to anyone, allowing remote viewing of people and locations. The article documents the security vulnerability through firsthand testing where the author was able to watch themselves on camera from their phone while colleagues miles away could also access the feed.

Key quotes

· 4 pulled
I am standing on the corner of Harris Road and Young Street outside of the Crossroads Business Park in Bakersfield, California, looking up at a Flock surveillance camera bolted high above a traffic signal.
On my phone, I am watching myself in real time as the camera records and livestreams me—without any password or login—to the open internet.
Hundreds of miles away, my colleagues are remotely watching me too through the exposed feed.
Flock left at least 60 of its people-tracking Condor PTZ cameras live streaming and exposed to the open internet.
Snippet from the RSS feed
Flock left at least 60 of its people-tracking Condor PTZ cameras live streaming and exposed to the open internet.

You might also wanna read

GrapheneOS patches Android VPN IP leak vulnerability that Google hasn't fixed

GrapheneOS has released an update fixing a recently disclosed Android VPN bypass vulnerability (affecting Android 16) that leaks users' real

cyberinsider.com·22d ago

Le Monde identifies French aircraft carrier location via sailor's public Strava fitness data

Le Monde journalists identified a French Navy officer on the aircraft carrier Charles de Gaulle through his public Strava fitness app profil

lemonde.fr·2mo ago

Phishing Campaign Targets Signal Users by Stealing Backup Recovery Keys

A new wave of phishing attacks is targeting Signal users by impersonating the app's support team. Hackers send messages inside Signal claimi

cybersecuritynews.com·50m ago

California Sues 23andMe Over 2023 Data Breach Affecting Nearly 7 Million Users

California Attorney General Rob Bonta has filed a lawsuit against Chrome Holding Co. (formerly 23andMe) over a 2023 data breach that exposed

oag.ca.gov·51m ago

New phishing campaign targets Signal users to steal chat backup recovery keys

Hackers are targeting Signal users in a new phishing campaign that attempts to steal their chat backups. The attackers pose as Signal's supp

techcrunch.com·56m ago

AI technology challenges NTSB's ability to keep cockpit voice recordings private

The National Transportation Safety Board (NTSB) temporarily took down its public docket system after discovering that digital images of cock

npr.org·1d ago