Security fail over Xiaomi cameras
Several users have been affected by a security fail using Mi Home Basic 1080p, through Google Home Hub. This fail allowed them to access to the video signal of other users with the same gadgets.
One of them made the security fail public on Reddit. The fail took place after a cache update on 26th December 2019 developed by Xiaomi when camera is connected to Google Nest.
As preventive measure, Google decided to block all Xiaomi’s Home and Assistant products, until installing a security update.
Xiaomi has already informed that the problem has been fixed and Google has already let interact with its products, except for the camera which caused the problem.
References:
- 06/01/2020 c.mi.com Official Statement Regarding Issue of Receiving Stills While Connecting Mi Home Security Camera
- 06/01/2020 androidpolice.com Google shuts down Xiaomi access to Assistant following Nest Hub picking up strangers' camera feeds (Update: Integration returns)
- 03/01/2020 xataka.com Google suspende el acceso de Xiaomi Home a Assistant por un fallo de seguridad con las cámaras Mijia que permite ver a desconocidos
- 03/01/2020 thehackernews.com Xiaomi Cameras Connected to Google Nest Expose Video Feeds From Others