Hacks Striking Old Dahua Units

Mick Brown

09/20/17 12:00pm

we are seeing a number of old dahua units we sold in uk being hacked yesterday and today

dahua helpful support is their old

these are in majour fast food resellers

with 20 going down in one retailer in an hour and 5 in another

the dahua virus epidemic has hit dahua hard here

anybody experiencing this let me know if you have a fix

Login to read this IPVM discussion.

Why do I need to log in?

IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

John Honovich

IPVM | 09/20/17 03:03pm

* ***** ***** ****** ** ********* *** **** ***** *****:****** ***** *********. ***** ******. *******:

**** ***** ********* [***, ****, ***, ***] **** ******* ***** & **** *****, **** **** *********** **** ****** ******* ****** last ****.
*** **** ***** ******** ***:
- ** ******* ******* ** *******.
- ***** ******** **** ** ***** ****.
- ****** *****.

Mick Brown

09/20/17 03:06pm

***** *** ****** *** **** **** ***** ***** **** **** support

**** ***** ****** ****** ***** ** *** ** ** **** are ******

**** ** **** ** ****

Mick Brown

09/20/17 03:26pm

**** ****** ** ** **** ******* ***** ***** *** **** put *** ** ********** ** ****

** ***** **** *********** ****** ***** **** **** ** **** with ** ** **** ***** ** ** ** ******** ***** of **** *** ******

Undisclosed #1

In reply to Mick Brown | 09/20/17 11:51pm

**** ****** ** ** **** ******* ***** ***** *** **** put *** ** ********** ** ****

**** ** *** ****?

Mick Brown

In reply to Undisclosed #1 | 09/21/17 12:50am

***** **** ***** ** * ********** ** ******* **'* **** quickly ********* ** *** *** *** ********* ************ ************ ** just **** ******* ** *********

Undisclosed #1

In reply to Mick Brown | 09/21/17 01:04am

***** **** ***** ** * ********** ** ******* **'* **** quickly ********* ** *** *** *** ********* ************ ************ ** just **** ******* ** *********

*********************** ***** ****** ***** ******* ******* ** **** *******.

Shane Lott

IPVMU Certified | 09/20/17 11:12pm

** ****,

* ** ** ********** ***** ********** *** *** **** ***** present ****** **** *** **** ***** **** **** * *********, a **** ***** ***.

******** * ******** **** ** ********, * ***** *******, *** outstanding!.

* *** * ******** ****** ******* ** ** ****** *** hour *** ** ********* ****, ***** *** ******** ****** ** hour.

*** ** ****** ********, ******* ****, ***** *** ********* *** recreate ****** ****** *********** ******* ** ** *** *****.

*******,

*****

John Honovich

IPVM | In reply to Shane Lott | 09/21/17 12:26am

*****, *** **** *** *** **** *****? ****** **?

Michael Miller

In reply to John Honovich | 09/21/17 12:45am

*** **** ** **** ** *** **** ***** *** * am ****** ***** ** **** ******** ****** **** ****** ******** hacked ***** ****/**** *****.

Shane Lott

IPVMU Certified | In reply to John Honovich | 09/21/17 08:48am

** ****,

*** ***** *** ** ** ***** ******* ***** ** ******* and ** ****** ******* ** * **** ***.

* *********** ********* ** ******** *** ***** ** ***** **** any "***** ******" **** *** "******" ********, *** **** **** a ***** ** ***** ** **** ** **** **** ****** on * ******** ******* ******** ** ******* ******* *** **** reset ** ** ***.

* ******** *** ******** *** *****, ********** ** ***, **** to **** *** *** *** ***** ******** ** ****** * 3 **** **** *** **********.

****** *********** *** ********** **** ************ ** ******** *** ** support.

* **** *** *********** ******* **** ** ******** *** ***** as * ***** *** ****** ******* **** ******.

*******,

***** ****

Mick Brown

In reply to Shane Lott | 09/21/17 08:53am

*** **** ** *** ** *** ****** ********** ** *****

** *** ** *** ********* ***** ************ ** ** **** to ****

**** **** ******* ****** * *** ***

** * ***** ***** *** **** ******* ******** **** ** site ***** *****

*** ***** *** ****** ** *** ** ** **** *** free

Mick Brown

In reply to Shane Lott | 09/21/17 10:00am

*** *** *** **** *** **** ********** ***** ** ***** its *** ******** ***** *** ***

** *** *** ** ********* ** ***** **'* * *** down ******** *******

*** *** **** ******* *****'* **** ** *** ****

** **** * *** ******* **** ***** *** ** ***** dvr **** *** **

*** **** ******* ** ** * **** ******** *** * years *** *****

** **** **** ***** **** ***** ** ** ***** ***** partners ******'* **** ********* **** ****** **** *** *** * grade ******** ***** ** ** *** *** * *****

Undisclosed #1

In reply to Mick Brown | 09/21/17 10:16am

*** *** *** **** *** **** ********** ***** ** ***** its *** ******** ***** *** ***

***** **'* ***** ***** *** (**********) ******?

John Honovich

IPVM | 09/21/17 11:14am

*** (*** ****)****** **** *******:

** *** ****** ** ****** ***** * ***** **** ** piracy, ** *** ***** ***** *********.
**** **** ** *** ****** * ********** ** ***** ******* since *********, ** *********.

**** ****** ****** *** ***** *** ***** *** ******* ********* but ** ** *** ***** ** **** *********** ** **** aware ** ******** ************* ****** ****** **** *** ****** **** **** * ****** password.

Undisclosed Distributor #2

In reply to John Honovich | 09/21/17 05:28pm

***** * ********** *** **** ******** ***** ********* ****, * am ****** **** **** ** ********* ******* **** *** ***** set ** *** ******* ***** *** ***** ***********. ****** ****** in ** *** ** *****, ** ******* ******** **** ****** because *** **** ********** ******** **** ********* ** ** *** default *****, *** ****** ** *** ** ***** - *** ARE. **** ** *** * "****" **** ** ********** ************** installers/end ***** *** **** *** ******* ***** ***** ***********.

** **** ** *** *** **** *** ***** ******* *** being ******** ******* ***-******** ***** **** * ******* ** ********** of *****, *** *** *** ********** ** **** ** ** to ** "******". **'* **** ******** "****" ** * ******* theater, ** *********** ******** *****, *** ***** "*****" *** ******* happens.

John Honovich

IPVM | In reply to Undisclosed Distributor #2 | 09/21/17 05:31pm

* ** ****** **** **** ** ********* ******* **** *** still *** ** *** ******* ***** *** ***** ***********.

***** *** ****** ******** ** ********* ******* ******* ********** ** *** ********.

** ***** **** ** ***** ** * ****** ** ******* passwords? ****. *** *** ***** ******** ** * **** ******** issue *** ** *** ****** **** **** ** ***** ********* I ***** ***** ***** ****** ** ******** ********.

Undisclosed Distributor #2

In reply to John Honovich | 09/21/17 05:42pm

******* *** * ******** *** ********** ** ** *** *** the **** ** ********* ***** ***********.

Undisclosed End User #3

09/22/17 01:05pm

***** *** ******* - ******** ** *******, ******, ******** **** and ** ******* ***** ******

John Honovich

IPVM | In reply to Undisclosed End User #3 | 09/22/17 01:10pm

**** **** #*! ******.

***** **** ****:

***** ** * ***** ** ****** ******* **** ***** ***'* all **** *** *****, ** *** ************ ***** **** ** Gujarat, **** *** **** ** ** ** ********** **** *** from *** *******, ** * ******** ******* *******, *** *** new ***** *** ********* , ****** *** ***** ****, ****** ports *** ******* **** ******** ****** ********** ** **** ** the ********.

****: ******** ** ** *****.

Undisclosed End User #3

In reply to John Honovich | 09/22/17 02:01pm

**** *** **** ******* ** ** ****** ********..

*********:*** ** ****** **** ***** ********* ******* ****** *******

****://****.**/*********.***?*=***&*=*****

*********:****** ***--*****

John Honovich

IPVM | In reply to Undisclosed End User #3 | 09/23/17 06:33pm

****** ** ************ **** * ****** ** ***** ********* ***** recorders **** **** ****** *** ********** **** ******* ***** ****** labels ***** ******* ** '****** *', '****** *', ***. **** so:

Undisclosed End User #3

In reply to John Honovich | 09/23/17 10:51pm

*****://****.*****.***/*****-******-********-**-*****************-*-*******/

** *** **** *** ****, **** ** * **** ****** attack ** *** ******* ******* *** ******* ****** *,*** ***** recording ****, **** **** *** *******, **** *** ***** ******* September ** *** **, ********* ***** ********* *********.

Mick Brown

In reply to Undisclosed End User #3 | 09/23/17 11:38pm

***** ** * ********** ** ******** ******* *** *** ***** brand

*** ** * *** **** ******* ** ** *** ***** dvr *** ***'* ** ***** **** ****** ***** ******** ***** themselves **** ** **** *** *** ******* ********

****** **** * ****** ****** ** **** *** **** ** fix

**** * *** *** *** *****

**** *** *** ***

***** **** ***** *** ** ** *** ******

*** ** ***** ** ****

** * ******* ******* **** ***** *** *** *** ** expensiVe

**** **** ****** ******

Justin Gant

7PiXL | 09/23/17 07:15pm

* ******* ** *** ** *** *** ********* ***** ** look ** *** ***, ***** **** *** ***** **** ******* 888888 *** ******** *** *** ********. *’** *** *** **** and **** ****** **** **** * *** ****.

Undisclosed End User #3

In reply to Justin Gant | 09/23/17 07:31pm

****:*****://******.***/****/***/****/******/*****-********-***.**

# *) *** ***** ******* '******' ** ******* ** ***** to ** ******* *** ***** ***** **** '******* *** *****' only, *** *** **** ******
# - *******, **** ********** ** **** ******* ** ***** browser ** '*******.**', *** *** ********* ** ********* ******

Brian Karas

IPVM | In reply to Undisclosed End User #3 | 09/23/17 07:42pm

** **** *** ***** ******* ***** ********** ** *********** ** the **** ********** ** *** *** ******* ******* ** ***** or ***??

Undisclosed End User #3

In reply to Brian Karas | 09/23/17 08:01pm

*******.

[....]

******** ********(*,*,*,*)
{
**(*=="******")******-*;

[....]

Undisclosed #1

In reply to Undisclosed End User #3 | 09/24/17 12:35am

******** ********(*,*,*,*)

********* *****-*** ****, ** ******* * ****** ***** ********, *'* hoping.

*** * ******'* ** ********* ** **** *** *** **** was ******** *** ***** :(

Undisclosed End User #3

In reply to Undisclosed #1 | 09/24/17 01:11am

*** ********* ****, ****'* *** **** ***** ** **** ** "prevent" **** '******' *** ******* ** ** ***** ******** ********.

*** ****** ** ******** ** ******* ****;

/**/*****.**: ******** *****()

/**/*******.**: ******** ********()

Undisclosed #1

In reply to Undisclosed End User #3 | 09/24/17 01:21am

*** ********* ****, ****'* *** **** ***** ** **** ** "prevent" **** '******' *** ******* ** ** ***** ******** ********.

* **** ******* ** *** ****** ****. ***** **** * didn't ******* **** *** * ****** *****. **** ** **** be ** :)

Mick Brown

In reply to Undisclosed #1 | 09/24/17 09:57am

*** * ****** *** * *** **** ***** **** ***** dvr ** **

Mick Brown

In reply to Undisclosed End User #3 | 09/24/17 10:09am

****://****************.***/~/*****/******/******/****/***-***/***********.***

Michael Miller

09/25/17 04:18am

* *** **** ******* ***** **** ** **** ******** ******. This *** ** *** **** * *****. **** *** ********** Honeywell, *** ** *** ********** ******* ******* **** *** ****.

Mick Brown

In reply to Michael Miller | 09/25/17 09:05am

***** ***** *** *** **** ********* ********

*** ******* ** *** ******** ** ***

**** *****

*** ****** ***** ****** ******** ** ***** ** *** *** Wednesday

**** *** ******* ** *** ****

***** ******** *** ***** *** ********

** **** ** **** ******* *** ** ** ** ******** firmware *******

**** **** ***** ***

*** * ****** **** **** ***** *** ***

*** ***'* **** ***** **** ** ****

*** * *** ***

Justin Gant

7PiXL | 09/25/17 06:35pm

**** *** *** **** **** *** *********** ***,

*****://********.***/********

Discussion	Posts	Latest
Japan-Based Resellers (1) Started by Undisclosed Manufacturer #1	1	less than a minute by Undisclosed Manufacturer #1
Is There An Electric Strike That Will Work With This Mortise Lock? (12) Started by Undisclosed Integrator #1	12	less than a minute by Ty Mullen
DW Spectrum. Their Server Or Your Server? (21) Started by Undisclosed Integrator #1	21	less than a minute by Undisclosed End User #4
New Using Corridor Views In Milestone Smart Client? (3) Started by Donald Gordon	3	less than a minute by Jared Tarter
Who's Using Intel Openvino For Video Surveillance Analytics? (6) Started by John Honovich	6	less than a minute by John Honovich

Discussion

Posts

Latest

Japan-Based Resellers (1)

Started by Undisclosed Manufacturer #1

less than a minute by Undisclosed Manufacturer #1

Is There An Electric Strike That Will Work With This Mortise Lock? (12)

Started by Undisclosed Integrator #1

less than a minute by Ty Mullen

DW Spectrum. Their Server Or Your Server? (21)

Started by Undisclosed Integrator #1

less than a minute by Undisclosed End User #4