Has anyone seen the discussion on this on places like reddit and even the official Eufy community forums here?
Even the new products Eufy are pushing out have this flaw and they have known about it since at least March earlier this year and have done nothing to resolve it. Instead they are pushing to use their cloud services to try to mask the issue, which defeats the main purpose of buying Eufy products since they store footage locally with no subscription fees.
The flaw is that anyone can perform a reset or forced resync on the physical camera or doorbell itself, by simply pushing a paper clip in the reset hole. What's the big deal with that? It deletes all your footage or makes it unviewable. So a thief can empty your house, then on the way out just remember to hold down the button for 10 seconds and the footage is all wiped. They can even steal your doorbell or camera, perform the reset to delete the footage of them stealing it, then re-pair it with their own home base product at home successfully to go on using your product they stole!
Someone has done some testing on this and they say that what is happening basically is that the footage in some cases is kind of still there on the SD card in the home base sometimes, but it's encrypted with a key generated on first pairing of the camera. Because the camera or doorbell camera gets reset, a brand new key gets generated causing all the old footage to be locked. Either way, people have found their footage is not viewable in anyway after a reset even if it does still "exist" on the media.
If you use the doorbells with cameras just as way to see who is at the door, and don't care to rely on it for anything more than that then I guess it's ok. For a security company to leave this flaw in the product though it doesn't look good.
Even the new products Eufy are pushing out have this flaw and they have known about it since at least March earlier this year and have done nothing to resolve it. Instead they are pushing to use their cloud services to try to mask the issue, which defeats the main purpose of buying Eufy products since they store footage locally with no subscription fees.
The flaw is that anyone can perform a reset or forced resync on the physical camera or doorbell itself, by simply pushing a paper clip in the reset hole. What's the big deal with that? It deletes all your footage or makes it unviewable. So a thief can empty your house, then on the way out just remember to hold down the button for 10 seconds and the footage is all wiped. They can even steal your doorbell or camera, perform the reset to delete the footage of them stealing it, then re-pair it with their own home base product at home successfully to go on using your product they stole!
Someone has done some testing on this and they say that what is happening basically is that the footage in some cases is kind of still there on the SD card in the home base sometimes, but it's encrypted with a key generated on first pairing of the camera. Because the camera or doorbell camera gets reset, a brand new key gets generated causing all the old footage to be locked. Either way, people have found their footage is not viewable in anyway after a reset even if it does still "exist" on the media.
If you use the doorbells with cameras just as way to see who is at the door, and don't care to rely on it for anything more than that then I guess it's ok. For a security company to leave this flaw in the product though it doesn't look good.