"Unmasking IPVM" - "John Honovich Should Be Cancelled."

Why do I feel that I'm next... ;)

In John Honovich’s crusade to destroy one company in particular—Hikvision—he hacked thousands of its devices without the consent of their actual owners. He then produced a YouTube video instructing the public on how to hack those cameras.

I'm mildly offended.

John... that tirade can be considered a compliment. You considered such a threat….addendum to your bio.

If they were trying to save Hikvision in the US market... this smear campaign is just a bit too late.

"When you're taking flak, you're over the target"

Always love it when people use the term "hack" as a catch-all.

I love the website Home that they threw up as "evidence". 1) it is on weebly, 2) it has an outlook.com generic email address and 3) it claims it will contain evidence, cour documents, etc. In reality, it has a main page and an about page, all of which are the quotes from the article.

They also intersperse the allegations so it appears that after targeting Hik, they then went after arecont, which IIRC, that was years ago.

As for the small business being publically called out, they put themself out there on a public forum (FCC), and they did it because HIKUA asked them to publically comment in their favor. They want it both ways....

And in the past, they complained that IPVM is anti-China. But now they are spinning it as anti Asian so they could bring the Panasonic story in to it.

Of course the anonyous source is so obviously a shill. The wording and phrasing and style is the exact same type of typical Hik rant they always use to respond to the "so called blogger hack"....

What a pity. It really makes Hik look weak and powerless. Using our free media to attack the free media...

Quite frankly I expected a little more effort from the Chinese.

Sounds like you were quite the rebel back in the day! Exciting back story!

1- on your first point, you lost their interest in your response the moment you used the word “elected”.

2- Im 58. I had a DUI when I was 19. Are they suggesting that a misc arrest almost 40 years disqualifies me or you as an industry participant? They would lose alot of their own customers using that as a standard. And especially not when they are committing genocide as a side gig.

3- If you have to hack to expose a hacker, especially a government hacker, then hack we must and hack we will.

Wow. This John Honovich guy went to Dartmouth? Cool!

What courses did you take at Dartmouth College?

Just curious.

The ole ignore the message, shoot the messenger routine.

I haven't logged in to IPVM in a few days - so this is the first I'm seeing this. After reading all of it, I guess I've finally made up my mind. I'm not going to be a housemate with John Honovich. There! I said it! I don't care who knows.

(well, maybe I do care - that's why I'm posting Undisclosed)

As pathetic as they've become, I'm still surprised that it took so long to pull this stunt. As far as I'm concerned, Hikvision just cancelled themselves.

John,

IPVM is a rich source of information and a goto for industry professionals for the latest in security tech. They are trying to put you on defense. Which means you’re doing great work. Do not ever stop! IPVM is exposing these frauds for what they are. You and IPVM will always have this security professionals backing.

So they don't like the Western culture but they want to be part of the Western "Cancel Culture"???

Hey, this is much better than snipers firing at you.

With as much as you've exposed and helped fight for, I figured you'd be on a CCP hit list.

Sam Smith or Peter Goldring...

Nothing like concentrated criticism by the powerful to know that one has had an effect. It is clearly the entrenched and powerful (and the powerfully entrenched) who have the most to lose from having their policies and weaknesses exposed. The power of the press (at least for now.......... :( _

Keep at it JH

All very interesting ..... I have a few questions for subscribers to ponder:

1. What qualifications does the IPVM team have to publicly evaluate security technology - do they have educational or experience in technical auditing? (Maybe certifications as a CISA, or certified in NIST)? What makes them the "experts"?

2. Are the publications really attacks or just informational to the industry. To really determine this, we have to look at intent. Information is just data. Determining the accuracy of data, is a whole different topic. (it requires research, validation and yes.... some level of expertise in the subject.)

3. The good news is that IPVMs public forums provide the ability to have other industry experts provide their input.

4. lastly, integrity and objectivity in all reporting - including some level of ethics, will create a trusted subscriber base.

I believe in collaboration within the security industry to understand the good, bad and ugly. BUT, that means listening to things you don't always agree with. Remember: collaboration does not mean consensus.

"Doxxing" and "Cancellation" are the twin last refuges of incompetent cowards with no valid arguments of their own.

In the world of "Breaking News" they did good. "Unmasking" what a great lead verb!

IPVM is just too much of an asset to be hurt by this, but give the devil his due.

P.S.: The "Cancelled" part is the wrong choice of a fairly beat up word. It draws people to your defense.

#SMEARCAMPAIGN ...(yawn), Next!

I can say that I find JH to be pretty un-agreeable, I still have some emails that were not great to receive, pretty unnecessary and kept coming in. We simply did not agree and he felt I had different intentions. That being said, there is plenty of good stuff on IPVM, great tools and very good competitive testing reports.

You can feel about John however you like, but there is far too much on IPVM to warrant this article. There is so much research and testing by a large team, it's not just a 'JH rant'. Not sure of it's a compliment or not but to me IPVM is so much more than John Honovic. It does not make sense to single him out by digging up some personal history to discredit information you simply don't like.

When in the publishing business you find yourself with enemies, that lead by using 25 year old selective history to attack an individual, you must be hitting a nerve.

10 years from now, we will look back and realize that development and distribution throughout the world of PRC designed and financially supported network chipsets along with the millions of network products containing them has been one of the greatest security breaches in history. The current and future risk to Government, educational, medical, institutional, corporate, business, and personal networks throughout the world is impossible to truly comprehend.

After the recent FBI and multi-agency bust last month, potentially 60 million POS systems world wide could still be currently exploiting consumer privacy. In the security industry alone, Network video cameras and recorders combine with an unestimatable number of IOT products that all use PRC chipsets and technology which by design check in with servers located throughout the world for the purpose of providing remote access. The numbers sold and installed on networks are proliferating every day.

The US government agencies have been slowly moving to protect government and all other network interests, but it is a massive undertaking, and the manufacturers of these products are using their own media assault to attack anyone simply stating the truth. Not proving there is no reason for concern, but arguing the agencies do not have the authority to do, what they did themselves over a decade ago.

Human rights violations are a concern, but nothing compared an international breach in network privacy. The actions and measures taken by the US, Great Britain, and other countries throughout the world are to protect their citizens and national security. Every citizen in every country should be interested and supportive of efforts to protect our rights and our privacy. In some cases the vendors may not even realize the threats created by components within their products, and hopefully they will join many others manufacturers who are switching to other sources that don't pose a risk, and software will be developed to mitigate the risks for the millions of systems that are currently installed.

Personal attacks and the attempt to silence opposing voices is something the world has witnessed the PRC do for many years. These security issues are is a Chinese problem. It is a PRC problem. In their country Chinese citizens know that with the PRC running their country, they have no personal privacy.

Why then should anyone assume the PRC would respect the rights of any other citizen in any other country?

Don't allow yourself to be misled by any media source. Do the research yourself. If you are in the security industry don't take chances with your customers or clients privacy. Talk to IT professionals about the risks of devices on networks that utilize peer to peer serialized remote connections, and how to go about securing them.

In a free society, the truth is our friend. Sometimes it can just take a bit of effort to sort out.

You know your doing something right when someone tries to attack you but when they try and personally attack you ... well you know you reached teh pinnacle. Well done John well done IPVM

John, Are you sure you are not planning to announce a run for a political office? Smells like a political hit job to me! What's next, were you suspended from Elementary school too? Haven't seen this since the last election...

Mr. Honovich's attitude or whatever aside, I have found IPVM to be one of the most useful resources available to learn abou video surveillance products and solutions. Most of the material is good positive information. What makes it trustworthy is the honest results demonstrating both pros (even from companies John doesn't like) and cons of products.

Do I see some bias at times? Yes, we all have it. John isn't typically shy about his. At least he has transparancy.

Let's keep working on "cancelling" industry shortfalls. Dishonest claims, fake oportunistic products, poor workplace cultures, racist algorithms, etc., - I hope IPVM / John Honovich strives to make the world better. John, you've obvioulsy accomplished becoming an influencer, congratulations.

I heard that one time John returned a movie to Blockbuster and didn't even rewind it! Can you believe the courage that he has to have to face his accusers?

I discovered your publication about two years ago, and have found the amount of useful information and reviews valuable. Consider our fees less a subscription and more of an investment supporting your publication.

It is important to continue providing independent product reviews and timely current reports on the news, events, ideas, and individuals that may have an impact on our industry, and the services we provide.

It was a bit of a surprise to discover the level of interactivity. The quick responses to follow up questions on reviews and articles are extremely helpful. The opportunity to follow, weigh-in on, and participate in open discussions can help broaden everyone's perspective. All will certainly not agree on everything, but open discussions create opportunities to see things from other points of view, which can often lead to a consensus.

Considering the growing number of new products, evolving technologies, and increasing investment in our industry, your subscriber supported publication provides a useful service. Not being dependent upon advertisers provides independence and opportunity for objectivity, but it also requires you to continue providing value to your subscribers in order to keep the lights on. This is very similar to our objectives as integrators, and service providers.

It would have truly been helpful to have had a publication like this 50 years ago when first entering this industry. At the very least it certainly could have helped shorten the learning curve.

Thank you for your service.

Michael Smith

(NOT related to Sam)

I'm worried about JH's "intransigent rage".

As we explained at the time, we simply used the authorized access that Hikvision designed into their products

Do you have any proof that Hikvision intentionally placed a backdoor in its devices? No. So why you keep saying it?

Hikvision is certainly to blame for releasing such vulnerable products, but saying this vulnerability is intentional without any proof is just dishonest. When a backdoor is intentionally planted, usually this is covert. This is a good example. The Hikvision "backdoor" instead was so trivial to detect, that is unreasonable to think this was done "by design".

Besides, the Hikvision hack map is also a bad move. Raising security awareness is praiseworthy, but this doesn't require publicly exposing thousands of devices. In that post it is also noted

The EU General Data Protection Regulation (GDPR) [...] specifies potential fines for companies that expose data that can directly or indirectly identify a citizen of the EU without their consent. By shipping cameras with a hard-coded backdoor, Hikvision exposes EU citizens to such data disclosures without consent

This is nonsense! It's not Hikvision that exposed data, but actually IPVM that exposed people's data by gaining access to a device without authorization, exploiting a vulnerability. If I use a Windows vulnerability to access your computer without your consent and make your own files publicly available, who should be sentenced, me or Microsoft?

John Honovich, what we should cancel is the CCTV expansion with its origins in China, everybody knows that they will use any tactic such us the one you received; and in my view it is just a political move. All technology coming from China, including CCTV, etc. is just a mirror copy of what we have been doing in America many years ago; we allowed it to happen unfortunately, and now we see the results. Of course they will use low level technics to shut you down, and to raise issues on you that took place many years ago it is low; we all make mistakes when we are young and none is exempt from it, that let you see how desperate they are.

What needs to be done is to organize us as a front to keep defending the bad actors, including some companies that are outside China.

Strange attack. However HIK is the biggest player and has many bugs to loose - so the rage is going on.

I'm wonder what will happend in the rest of the world eg. Europe.. something's going on in Italy and Great Britain, something in Poland .. let's see

Obviously criticism by IPVM is not being received with a view of improvement and improved transparency.

I think IPVM is to be commended for drawing attention to human rights violations. More companies need to do this.

The ultimate customers definitely need to be more aware. These unfortunate situation is not just om IPVM but numerous other worldwide sources. Also directly from people involved.

Besides the human rights violations there are have been other very significant problems identified..

More worldwide companies need to stand up and push back against China rhetoric. Good on him for making a stand.

What normally happens to a person in China is they "disappear" and may or may not re appear.

Also look what China said about activities in South China Sea and the situation now.

All those fishing boats - tied up together. They must thing people are stupid. If reflects badly on China.

I would think the PRC or Vlad would be able to hire more proficient English speakers. Looking at the usage of language, it would appear to be written by a non-native English speaker.

A simple study of the following sentence makes it quite clear:

John Honovich’s greed is only exceeded by an intransigent rage that helps drive him to deploy litany tactics designed to go after any Asian technology company simply because they are Asian.

It is a very interesting piece linguistically and in terms of understanding the use or propaganda pieces, but, since it is not the purpose of this forum...

I think the most concerning information contained in the entire report is that John squeezes his girlfriend's head. Really John?

Very interesting. How factual is this litany? I alway read article of this nature with a high level of distrust. I am sure John is and was a rabble rouser, that is not always bad. When I raise my montra of "protect us from zealots no matter what their cause", someone once replied, "if we did not have zealots, how would we know where the middle is?" A very good point.