Cyber Daily Report

News

Home News

ADT Tech Hacks Home-Security Cameras to Spy on Women

  • Becky Bracken--threatpost.com
  • published date: 2021-01-22 14:08:00 UTC

A former ADT employee pleads guilty of accessing customers’ cameras so he could spy on them.

<div class="c-article__content js-reading-content"> <p>Former ADT employee Telesforo Aviles took note when there were attractive women at a home he serviced in the Dallas area. Then he would add his personal email address to their accounts so he could have around-the-clock access to their most private moments, according to the U.S. Attorneys’ Office.</p> <p>Now Aviles faces up to five years in federal prison for accessing roughly 200 accounts more than 9,600 times without consent, over a four-and-a-half year period.</p> <p>“This defendant, entrusted with safeguarding customers’ homes, instead intruded on their most intimate moments,” said Acting U.S. Attorney Prerak Shah. “We are glad to hold him accountable for this disgusting betrayal of trust.”</p> <p><a href="https://threatpost.com/newsletter-sign/"><img loading="lazy" class="aligncenter wp-image-141989 size-full" src="https://media.threatpost.com/wp-content/uploads/sites/103/2019/02/19151457/subscribe2.jpg" alt="" width="700" height="50"></a></p> <p>Aviles admitted to regularly adding his own email address to customers’ ADT Pulse accounts so he could watch customers in real time without them knowing. The U.S. Attorney’s Office said Aviles would watch women naked and couples engaged in sexual activity for his own sexual gratification, they said.</p> <p>“The defendant used his position of employment to illegally breach the privacy of numerous people,” FBI Dallas Special Agent in Charge Matthew J. DeSarno. The FBI works with our law-enforcement partners to thoroughly investigate all cyber-intrusions and hold criminals accountable for their actions. Cyber-intrusions do not only affect businesses, but also members of the public. We encourage everyone to practice cyber-hygiene with all their connected devices by reviewing authorized users and routinely changing passwords.”</p> <p><a href="https://www.adt.com/adt-privacy-notice" target="_blank" rel="noopener noreferrer">ADT was made aware of the issue</a> on April 23, when a customer called to report an unauthorized email on their account, the company said.</p> <p>“Unfortunately, our investigation revealed that during a service visit, one of our Dallas-area technicians had added his personal email address to this customer’s account to gain unauthorized access, and he had done the same thing during service visits with other customers in the Dallas area.”</p> <h2><strong>ADT Reaction  </strong></h2> <p>As soon as the company was made aware Aviles was terminated and reported to law enforcement.</p> <p>ADT also contacted each of the customers impacted and the company is doing what they can to address their concerns.</p> <p>“We apologize to the customers affected by the actions of this former employee and deeply regret this incident,” ADT’s statement said. “The ADT mission is to help protect and connect people with the things they love most. Fully earning this trust back may take time, but nothing is more important to us and to those who have served our customers under the ADT banner for the last 145 years.”</p> <p>ADT joins the ranks of many other companies dealing with <a href="https://threatpost.com/ticketmaster-10-million-fine-hacking-rival/162695/" target="_blank" rel="noopener noreferrer">insider threats on security</a>. Ticketmaster was recently on the receiving end of a $10 million fine after several employees hacked a rival company’s computer systems.</p> <p>Forrester researchers recently explained that the uptick in <a href="https://threatpost.com/2021-cybersecurity-trends/162629/" target="_blank" rel="noopener noreferrer">work-from-home and remote employees</a> is likely to amp up the rise of insider threats across all industries.</p> <p>As for ADT, the company is relieved to have this case behind them, announcing the U.S. Attorney’s decision to charge their former employee.</p> <p>“We are grateful to the Dallas FBI and the U.S. Attorney’s Office for holding Telesforo Aviles responsible for a federal crime.”</p> <p><strong>Download our exclusive </strong><a href="https://threatpost.com/ebooks/healthcare-security-woes-balloon-in-a-covid-era-world/?utm_source=FEATURE&amp;utm_medium=FEATURE&amp;utm_campaign=Nov_eBook" target="_blank" rel="noopener noreferrer"><strong>FREE Threatpost Insider eBook</strong></a> <em><strong>Healthcare Security Woes Balloon in a Covid-Era World</strong></em><strong>, sponsored by ZeroNorth, to learn more about what these security risks mean for hospitals at the day-to-day level and how healthcare security teams can implement best practices to protect providers and patients. Get the whole story and </strong><a href="https://threatpost.com/ebooks/healthcare-security-woes-balloon-in-a-covid-era-world/?utm_source=ART&amp;utm_medium=ART&amp;utm_campaign=Nov_eBook" target="_blank" rel="noopener noreferrer"><strong>DOWNLOAD the eBook now</strong></a><strong> – on us!</strong></p> <p> </p> <p> </p> <p> </p> <footer class="c-article__footer"> <div class="c-article__footer__container"> <div class="c-article__footer__col"> <a href="#discussion" class="c-button c-button--secondary">Write a comment</a> </div> <div class="c-article__footer__col"> <div class="c-article__sharing"> <p><strong>Share this article:</strong></p> <nav class="c-nav-sharing"> <div class="social-likes social-likes_notext" data-title="ADT Tech Hacks Home-Security Cameras to Spy on Women" data-url="https://threatpost.com/adt-hacks-home-security-cameras/163271/" data-counters="yes" data-zeroes="yes"><div class="facebook" title="Share via Facebook"></div> <div class="twitter" title="Share via Twitter"></div><div class="linkedin" title="Share via LinkedIn"></div> <div class="reddit" title="Share via Reddit"></div> <div class="flipboard" title="Share via Flipboard"></div> </div> </nav> </div> </div> </div> <div class="c-article__footer__container"> <div class="c-article__footer__col"></div> <div class="c-article__footer__col"> <ul class="c-list-categories"> <li><a class="c-label c-label--secondary-transparent" href="https://threatpost.com/category/hacks/">Hacks</a></li> <li><a class="c-label c-label--secondary-transparent" href="https://threatpost.com/category/privacy/">Privacy</a></li> <li><a class="c-label c-label--secondary-transparent" href="https://threatpost.com/category/web-security/">Web Security</a></li> </ul> </div> </div> </footer> </div>

Most Popular

MixMode Raises $45 Million in Series B Funding Round Led by PSG to Automate Cyberattack Detection

  • None -- Security Boulevard
  • Published date: 2022-03-23 14:16:00 UTC

Ukraine War Alters Security Landscape for Orgs, ERM Leaders

  • None -- Security Boulevard
  • Published date: 2022-03-23 12:46:00 UTC

IoT is magic for building automation systems. But what about security?

  • Shaun Cooley -- Securitymagazine.com
  • Published date: 2022-03-23 04:00:00 UTC

A Closer Look at the LAPSUS$ Data Extortion Group

  • None -- securityboulevard.com
  • Published date: 2022-03-23 00:00:00 UTC

What is CWPP? (Cloud Workload Protection Platform)

  • None -- securityboulevard.com
  • Published date: 2022-03-23 00:00:00 UTC