Botnet Of 900 IP Cameras Launch DDOS Attack

Undisclosed #1

Nearly one thousand geographically disparate ip cameras have been launching coordinated distributed denial of service attacks against an unidentified targets, reported Incapsula

The attack was run of the mill, peaking at 20,000 requests per second (RPS). The surprise came later when, upon combing through the list of attacking IPs, we discovered that some of the botnet devices were located right in our own back yard. Further investigation of the offending IPs showed that they belonged to CCTV cameras, all accessible via their default login credentials.

Further research showed that these cameras had been used in previous attacks possibly by unrelated hackers.

Login to read this IPVM discussion.

Why do I need to log in?

IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

John Honovich

IPVM | 11/08/15 12:30pm

** *** ****** ** **** ****, ** ***** **** **** cameras **** ********. ***** ********:

"** **** **** ** ****'* *** ********** ************ ** ****** model, **** * ********* ****** ******* ** ******* **** **** configured ** ***** ****** ******, ***** **** ***** ********** *** default/easy-to-guess ***********. (*.*., *****/*****, *****/*****, ***) *** *** **** ***** is *** ******* **** *****."

Undisclosed #1

In reply to John Honovich | 11/09/15 03:31am

* ***** **** ** ***** ** **** *** ** ** the **** *** ** ******* ** ***** *********** *******, ***** surrogate ********* ******* **** *** ******* *********** ****.

** ***** ********* **** ******** ***** **** * **** ***, but *****'* ** ***** ** **. *** *** **** ****** proved ** *** ********* *** ***'* ** *'* *** **** cameras *** ***** ** ** *** ******.

What ***** ** ** **** ** * '***** ***' ****** ***** ** ***** ********* ** *** **** ***** ******* *** ****** *** ****** **** ** "****** **** **** ********, *** *** ** ******".

Undisclosed End User #2

11/09/15 06:43am

***** ** *** ***** ** ***** ***/***** *** ***** *** place * *** **** ********* ******* *** ***** ******** ** something ****** *** ***********? *** ********** ***** *******: **** ******* to *********, ***** **** *********** ** *****'* ** ******** ***** button.

Undisclosed #1

In reply to Undisclosed End User #2 | 11/09/15 07:00am

***** ** *** ***** ** ***** ***/***** *** ***** *** place * *** **** ********* ******* *** ***** ******** ** something ****** *** ***********?

**** ****.

Discussion	Posts	Latest
Hikvision Aims To Increase 'Sales On Amazon' With E-Commerce Specialist (5) Started by Brian Karas	5	less than a minute by Undisclosed Manufacturer #3
It Wont Be Long Before Hikvision Will Be Dominating The Access Control Industry Like They Already Are In Surveillance. Boom Shocka Locka! (5) Started by Sean Nelson	5	7 minutes by Undisclosed Manufacturer #1
Dedicated Micros Support For 3rd Party Cameras? (8) Started by Undisclosed Integrator #1	8	about 2 hours by John Honovich
The Dahua "Hacked The World Over" Gag Graphic, For Example, Was Uncalled For And Unprofessional (5) Started by Undisclosed Integrator #1	5	less than a minute by John Honovich
Binge Drinking In This Industry? (68) Started by John Honovich	68	about 2 hours by John Honovich

Discussion

Posts

Latest

Hikvision Aims To Increase 'Sales On Amazon' With E-Commerce Specialist (5)

Started by Brian Karas

less than a minute by Undisclosed Manufacturer #3

It Wont Be Long Before Hikvision Will Be Dominating The Access Control Industry Like They Already Are In Surveillance. Boom Shocka Locka! (5)

Started by Sean Nelson

7 minutes by Undisclosed Manufacturer #1

Dedicated Micros Support For 3rd Party Cameras? (8)

Started by Undisclosed Integrator #1

about 2 hours by John Honovich