I wanted to let everyone out there know that we have been selling Flir DVR and NVRs. It seems as though they are now starting to get hacked as well. We have contacted Flir support and they say that a firmware update is coming but are unable to give us a timetable. Anyone else experiencing this?
Flir Systems Being Hacked
Are these Lorex-branded units?
If so, I think you are experiencing this: Hackers Globally Attacking Dahua Recorders.
We are planning some followup on this as well, but for now, that report should give you some additional insight.
FLIR SMB recorders frequently use Dahua, so I am pretty sure that it is the Dahua inherited issue. Still FLIR's fault for using Dahua of course.
I wasn't even aware Flir was in the DVR/NVR business before there were articles about the vulnerabilities (I've associated the company with hand-held thermal cameras), but seeing how unprepared they were to the response (not supplying firmware updates in time), I'm not at all surprised such things are happening. Unfortunately.
Ask questions and get answers to your physical security questions from IPVM team members and fellow subscribers.