Consumer Rights Wiki

Insta360: Difference between revisions

← Older editNewer edit →
VisualWikitext
Formatted to match more closely to the company article template
mNo edit summary
Line 55: Line 55:


==Incidents==
==Incidents==
===Data Collection During Activation===
===Data collection during activation===
The mandatory activation requirements involve extensive data collection, including:
The mandatory activation requirements involve extensive data collection, including:


Line 65: Line 65:
The Insta360 privacy policy acknowledges that personal data may be transferred to servers in Hong Kong and other countries, subject to different privacy protections than users' home jurisdictions.<ref>{{Cite web |title=Insta360 Connect Privacy Policy |url=https://www.insta360.com/support/supportcourse?post_id=20779 |url-status=live |website=Insta360}}</ref>
The Insta360 privacy policy acknowledges that personal data may be transferred to servers in Hong Kong and other countries, subject to different privacy protections than users' home jurisdictions.<ref>{{Cite web |title=Insta360 Connect Privacy Policy |url=https://www.insta360.com/support/supportcourse?post_id=20779 |url-status=live |website=Insta360}}</ref>


===Insta360 ONE X2 Security Vulnerability (''Jan. 2022'')===
===Insta360 ONE X2 security vulnerability (''Jan. 2022'')===
A critical security vulnerability was discovered in the Insta360 ONE X2 in January 2022 that allows anyone to access the footage stored in the camera. The camera broadcasts a WiFi signal with a hardcoded password of "88888888" that:
A critical security vulnerability was discovered in the Insta360 ONE X2 in January 2022 that allows anyone to access the footage stored in the camera. The camera broadcasts a WiFi signal with a hardcoded password of "88888888" that:


Line 80: Line 80:
Despite Insta360's claims in August 2022 that the issue had been addressed, independent testing in September 2022 confirmed the vulnerability remained exploitable on firmware version 1.0.59_build1.<ref>{{Cite web |last=Petkauskas |first=Vilius |date=2022-08-31 |title=Insta360 vulnerability allows unauthorized access to user photos |url=https://cybernews.com/news/insta360-vulnerability-allows-unauthorized-access-to-user-photos/#:~:text=A%20software%20flaw%20discovered%20seven,X2%20device%20in%20January%202022 |url-status=live}}</ref><ref>{{Cite web |last=Spadafora |first=Anthony |date=2022-08-31 |title=Own an Insta360 camera? This flaw could let anyone access your photos and videos |url=https://www.tomsguide.com/news/own-an-insta360-camera-this-flaw-could-let-anyone-access-your-photos-and-videos |url-status=live}}</ref><ref>{{Cite web |last=Limer |first=Eric |date=2022-08-29 |title=Vulnerability in Insta360 Cameras Lets Anyone Download Your Photos |url=https://petapixel.com/2022/08/29/vulnerability-in-insta360-cameras-lets-anyone-download-your-photos/ |url-status=live}}</ref><ref>{{Cite web |last=Haile |first=Allen |date=2022-09-06 |title=ScrewX2 and the Insta360 WiFi security hole |url=https://subethasoftware.com/2022/09/06/screwx2-and-the-insta360-wifi-security-hole/ |url-status=live |website=Sub-Etha Software}}</ref>
Despite Insta360's claims in August 2022 that the issue had been addressed, independent testing in September 2022 confirmed the vulnerability remained exploitable on firmware version 1.0.59_build1.<ref>{{Cite web |last=Petkauskas |first=Vilius |date=2022-08-31 |title=Insta360 vulnerability allows unauthorized access to user photos |url=https://cybernews.com/news/insta360-vulnerability-allows-unauthorized-access-to-user-photos/#:~:text=A%20software%20flaw%20discovered%20seven,X2%20device%20in%20January%202022 |url-status=live}}</ref><ref>{{Cite web |last=Spadafora |first=Anthony |date=2022-08-31 |title=Own an Insta360 camera? This flaw could let anyone access your photos and videos |url=https://www.tomsguide.com/news/own-an-insta360-camera-this-flaw-could-let-anyone-access-your-photos-and-videos |url-status=live}}</ref><ref>{{Cite web |last=Limer |first=Eric |date=2022-08-29 |title=Vulnerability in Insta360 Cameras Lets Anyone Download Your Photos |url=https://petapixel.com/2022/08/29/vulnerability-in-insta360-cameras-lets-anyone-download-your-photos/ |url-status=live}}</ref><ref>{{Cite web |last=Haile |first=Allen |date=2022-09-06 |title=ScrewX2 and the Insta360 WiFi security hole |url=https://subethasoftware.com/2022/09/06/screwx2-and-the-insta360-wifi-security-hole/ |url-status=live |website=Sub-Etha Software}}</ref>


===Content Creator Controversy (''2024'')===
===Content Creator controversy (''2024'')===
In 2024, Insta360 faced backlash for allegedly asking content creators not to disclose sponsored content. PetaPixel's investigation described this as "a severe violation of trust and, no less, a crime." The company later admitted to inadequate training that led to these practices.<ref>{{Cite web |last=Hilliard |first=Jaron |date=2024-05-06 |title=Insta360 Under Fire: What the Company Did to Lose Trust and How It Hopes to Win it Back |url=https://petapixel.com/2024/05/06/insta360-under-fire-what-the-company-did-to-lose-trust-and-how-it-hopes-to-win-it-back/ |url-status=live}}</ref>
In 2024, Insta360 faced backlash for allegedly asking content creators not to disclose sponsored content. PetaPixel's investigation described this as "a severe violation of trust and, no less, a crime." The company later admitted to inadequate training that led to these practices.<ref>{{Cite web |last=Hilliard |first=Jaron |date=2024-05-06 |title=Insta360 Under Fire: What the Company Did to Lose Trust and How It Hopes to Win it Back |url=https://petapixel.com/2024/05/06/insta360-under-fire-what-the-company-did-to-lose-trust-and-how-it-hopes-to-win-it-back/ |url-status=live}}</ref>


Line 109: Line 109:
* [[Internet of Things security]]
* [[Internet of Things security]]


*
[[Category:Camera manufacturers]]
[[Category:Consumer electronics]]
[[Category:Privacy concerns]]
[[Category:Right to repair]]
[[Category:Insta360]]
[[Category:Insta360]]
Retrieved from "https://consumerrights.wiki/Insta360"