A few months ago the KRACK exploit was published which effectively lets attackers decrypt all Wi-Fi network traffic to and from the victim by triggering a vulnerability in the WPA2 authentication protocol. Once the traffic is decrypted, it can be further modified and injected with malware, ransomware or other malicious exploits to make matters worse.
The Rhombus team takes product security very seriously and thus has developed a highly scalable and reliable OTA infrastructure to release firmware updates and patches to our cameras with complete audit and diagnostic trails. Using our OTA system, we deployed a patch to all of our beta cameras within a week. Then, working with our hardware vendor, we recently released a patch to all of our recently released R1 cameras. Even in the interim time between the vulnerability details and the patches, our cameras were not susceptible to the vulnerability as all communication between the cameras and our servers happen over a mutually authenticated SSL connection.
Having a well-designed OTA firmware release infrastructure has become a crucial and non-negotiable requirement for any enterprise/corporate product. We urge everyone to be diligent in choosing any hardware and IoT products they release within their company.
If you're interested in learning more about our security approach, check out one of our previous blog entries on the subject.
If you have any questions, please do reach out to our security team - email@example.com