Profile picture
, 15 tweets, 18 min read
My Authors
Read all threads
<Thread> Few days ago, @Gizmodo published an awesome investigation about the Neighbors app by @ring. The article is doing an excellent job but no technical details are given. So I decided to give a look at the crime-alert app made by Amazon 1/ gizmodo.com/ring-s-hidden-…
@Gizmodo @ring In the article, @dellcam explained that by examining the network traffic of the Neighbors app, we can get the geographic coordinates of a camera. 2/
@Gizmodo @ring @dellcam So I installed the app on a phone, intercepted the traffic and used all the possible features of the app 3/ play.google.com/store/apps/det…
@Gizmodo @ring @dellcam Bingo! When the app retrieves the details of an alert, the geographic details of the camera is in the response. 4/
@Gizmodo @ring @dellcam This is what an alert looks like in the app. The location of the camera is not given, only "X miles away". This a clear leak of personal information from @ring 5/
@Gizmodo @ring @dellcam In his article @Gizmodo mentionned the work of Dan Calacci, a PhD student at the Massachusetts Institute of Technology’s (MIT) Media Lab. He managed to enumerate the location of all the @ring cameras in the US. How did he do it? 6/
@Gizmodo @ring @dellcam This is quite easy. In the "get alert details" request you just have to change the alert id: /api/alerts/<alert_id> 7/
@Gizmodo @ring @dellcam As a result, you will have the location of the @ring cameras who shared an alert at least once in the past. 8/
@Gizmodo @ring @dellcam In another article, @josephfcox from @VICE mentionned that some hackers are able to crack @ring accounts. How they are doing that? 9/ vice.com/en_us/article/…
@Gizmodo @ring @dellcam @josephfcox @VICE Unfortunately, this is quite easy. An attacker has two choices:
- use a list of already compromised combinations from other services
- If you know the victim's email you can bruteforce the password. There is no rate limitation on the server side... 10/
@Gizmodo @ring @dellcam @josephfcox @VICE I successfully bruteforce my own account... 11/
@Gizmodo @ring @dellcam @josephfcox @VICE Also, there is no authentication to access the videos of alerts shared by @ring users. 12/ nhshare.ring.com/17148411/00059…
@Gizmodo @ring @dellcam @josephfcox @VICE No authentication to access the photos too... 13/ nhshare.ring.com/7707699/000581…
@Gizmodo @ring @dellcam @josephfcox @VICE Don't tell anyone, but if you want to have fun the api and the staging env urls are available in the app. 14/
@Gizmodo @ring @dellcam @josephfcox @VICE That's the end. Don't buy a product with such lousy security 15/15
Missing some Tweet in this thread? You can try to force a refresh.

Enjoying this thread?

Keep Current with Elliot Alderson

Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

More from @fs0c131y see all

Profile picture
Elliot Alderson
@fs0c131y
The @ring story is a good opportunity for journalists to explain what is credential stuffing, the dangers, why you shouldn’t reuse password, why you should activate 2FA. Use this story to raise awareness, make it useful. zdnet.com/article/hacker…
You want to submit a talk to a conference, you have one! You can create a talk “Why 2FA is important” or “Why you should implement 2FA” and submit it to a dev conference.
The blame game is funny, no doubt on that “Look at their security hahaha” but after the fun part we need to take our responsibility and transform that into something useful
Read 3 tweets
Profile picture
Elliot Alderson
@fs0c131y
If you want to phish me, at least make an effort 😅
Analyse of the link in the email urlscan.io/result/9715009…
They don’t even try to be smart. The phishing kit is still available at lendcapital.ca/pss/
Read 9 tweets
Profile picture
Elliot Alderson
@fs0c131y
My dear @smittal_ips,

Bro, we need to discuss. Your account has not been "partially" hacked. You like porn, that's all.

Btw, you liked a lot of porn content in the past. You didn't remove everything Mr Data Privacy expert.

Regards,
@smittal_ips Can I have a like with this tweet @smittal_ips?
I regret nothing
Read 5 tweets

Related threads

Profile picture
FarmGreedy™
@BashorunGa_
Few days ago,I made my opinion public by saying I fared better under @MBuhari's admin than GEJ's,some people felt offended and wailed uncontrollably under my tweet.
I think they need to know the policies am talking about and how these policies have helped serious farmers.#THREAD
Its important that you all know that government policies alone can not make Nigeria self sufficient in food production. People needs to be involved.Increased food production must be championed by Nigeria farmers. As a nation we must produce what we consume.
#TotalBanOnImportation
Policies are only meant to support and encourage farmers which I believe the Presidents body language and act has shown enough for serious farmers to place all hands on deck and to be successful.
One of such policy I will mention is the Anchors Borrowers Program. #ASKQUESTIONS
Read 23 tweets
Profile picture
Jasmine El-Gamal
@jasmineelgamal
<thread> Four years ago, I went to #Greece to work on a short documentary on the #refugee crisis. I was prepared for many things physically, but I wasn’t prepared to gain a family. Today I want to tell you their story, and why countries should open their doors to refugees 1/x
I first met 6 yr old Menwar when I joined filmmaker & friend Ida Theresa Myklebost to work on her film “Unwelcome” & we found ourselves in a makeshift refugee camp near the Greece-Macedonia border. My laptop was locked; he banged on some keys, unlocked it & stole my heart 2/x
When I took this photo of Menwar, he & his family had been in Greece for over a year after their house in #Aleppo was destroyed in the war and they made the treacherous journey by sea to #Europe. By that time, in mid-2016, Europe was closing its doors. They were in limbo. 3/x
Read 10 tweets
Profile picture
Annika H Rothstein
@truthandfiction
Thread: A few days ago, the Swedish Center party (@Centerpartiet) voted to pursue a full ban on male (under 18) circumcision. Centerpartiet is not a niche party, it is center/liberal and a part of the conservative coalition, making their decision all the more outrageous. 1/4
Previously, the circumcision ban has been proposed by the far right, but the issue is becoming mainstream here in Sweden & is likely to pass, given the virulent anti-Jewish sentiment in the country, and if it does it will make Jewish life in Sweden impossible. 2/4
Centerpartiet was instrumental in banning kosher slaughter in 1937 (the party was then known as Bondepartiet), but back then it didn’t try to hide its motives when stating “the Jews have enough meat as it is”, claiming that Jewish traditions are simply un-Swedish 3/4
Read 4 tweets
Profile picture
Stu Cvrk
@STUinSD
Thread: On the Corruption of American Institutions and Conquest’s Second Law, Part II

1. British historian Robert Conquest developed three great laws of politics:
1. (cont'd)
A. Everyone is conservative about what he knows best
B. Any organization not explicitly rightwing sooner or later becomes leftwing
C. The simplest way to explain the behavior of any bureaucratic organization is to assume that it is controlled by a cabal of its enemies
2. Part I of this series examined examples of US cultural institutions that succumbed to Conquest’s second law.
Read 60 tweets
Profile picture
Derek Smart
@dsmart
{thread} A group of insane Star Citizen chuckleheads, who became lawyers on 12/12/17, are parked on Reddit (where else?) claiming that the judge didn't rule on the CryTek v RSI/CIG MtD yesterday because both sides asked here not to.

It's pure and utter nonsense.
These are the same nutters who didn't even give the female judge a passing glance nor mention this whole time.

Until they read my research (below) thread a few days ago.

Now they're actually referring to her on a first name basis.

threadreaderapp.com/thread/9616290…
It all started when I posted this, shortly after finding out on Jan 8th, that the judge had vacated the much anticpated Jan 9th hearing on the motion.

Read 22 tweets
Profile picture
Lulu Wood
@LuluHaangala
Thread:
A few days ago I came across a news story of a young lady called Misozi been appointed as MD of @ilovezoona. A few Google search’s later, I was even more intrigued by her story and decided I had to meet her & get to know a bit more about her.
Misozi’s father passed away when she was 8, so her mom was breadwinner. Unfortunately her mothers’ eyes gave up and she had to stop her tailoring business. Her older brother had to take on the responsibility of putting himself and 4 siblings through school.
After passing High School, she got a place at Evelyn Hone College. Unfortunately after one semester, her brother informed her that he couldn’t continue with school fees and she would have to look for a job so that he could assist her other siblings.
Read 10 tweets

Trending hashtags

#CalleValparaiso #FreeAssangeNOW #GOPE #PontificiaUniversidadCatolicadeChile #Kashmir #Estado #Iquique #ManuelAntonioMatta #Assange #NuevaConstitucion #Damascus #Sodimac #CarabinerosDeChile #Syria #Hinduism #HinduphobicCongress #LaMoneda #VitalApoquindo #Mosalah #India #Alameda #SaveSabarimala #ToqueQueda #AvenidaRamonFreire #EconomicValueAdded
Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!