Baby Monitors Riddled With Security Holes

Rapid7 on Wednesday released a report on an assortment of new vulnerabilities in baby monitors from several manufacturers: predictable information leaks; backdoor credentials; reflective, stored XSS; direct browsing; authentication bypass; and privilege escalation. "Many of the issues would allow video and audio from the device to be viewed by an attacker, whether from a live stream or previously recorded clips," said Mark Stanislav, senior security consultant for global services at Rapid7.

from TechNewsWorld http://ift.tt/1Fk6R9W