Verkada, a startup that manages surveillance camera image data cloud services, suffered massive hacking. The leaked data includes data from 150,000 surveillance cameras installed in Tesla factories, warehouses, Cloudflare offices, hospitals, prisons, and schools.
According to an international group of hackers who hacked Vercada, this hack is an argument that shows how Vercada surveillance cameras are generally easy to hack. It claims to be able to access not only real-time footage of the entire surveillance camera, but also the entire recorded data. In addition, it is said that it has obtained the hard-coded Vercada privileged administrator account credentials among the disclosed DevOps infrastructure. The administrator account credentials allowed him to access not only surveillance camera images, but also customer information.
The companies affected include Tesla, Cloudflare, and Equinox, a premium health clip chain. In addition, names of public offices such as Halifax Health Hospital in Florida, Sandy Hook Elementary School in Newtown, Connecticut, and Texas Regional Medical Center, which are known for gun shooting cases, are also being mentioned.
Vercada has already taken measures to disable the use of all internal administrator accounts, and is conducting detailed investigations on this case by requesting not only internal security teams but also external security companies. Related information can be found here.