Hikvision (Stops) Lying About Ezviz Security

By: John Honovich, Published on Mar 18, 2016

Hikvision promoted the security of their directly sold Ezviz consumer line to Americans in a March 9, 2016 release.

False

It featured this false statement:

"One critical element that distinguishes EZVIZ's security measures from others is that there is no IP address for EZVIZ cameras"

However, Ezviz cameras, like the 'Mini' they showcased in the release, are IP cameras with IP addresses. This is shown by connecting Ezviz Mini to Hikvision's own software:

Mistakes Happen

Mistakes will happen to anyone. Of course, such a basic error in a publicly traded company's press release does raise competency concerns. Nonetheless, if it was simply a mistake, it should be promptly fixed. 

No Fix 9 Days Later

We contacted Hikvision a week before publishing this post and again a few days prior to alert them of this, in the hope that they would fix it and issue a correction. Unfortunately, they have not.

Get Notified of Video Surveillance Breaking News
Get Notified of Video Surveillance Breaking News

Hikvision knows this is false and has chosen not to take action.

UPDATE: Now Fixed

March 22nd, It has now been changed to:

"One critical element that sets EZVIZ's security measures from many others is that EZVIZ does not allow customers to access the camera over the Internet by entering the camera’s IP address in web browsers"

Lying About Security

It is not clear if Hikvision choose to lie when they first released this but, even if it was then a mistake, their choice to leave as is, after knowing that it was a false statement results in Hikvision lying to the American public about their product's security.

Adapting to American Law and Way

Hikvision's Chinese government ownership may allow it to be above the law in China.

In America, Hikvision needs to follow American law. The US FTC regulates false advertising, indeed a few years ago they punished an IP camera manufacturer for their security practices. Making false statements combined their extremely poor cyber security track record is a dangerous combination.

If Hikvision really wants to do the right thing and convince Americans of their product's security, they should at least start by rectifying published falsehoods. And if that happens, we would be happy to issue an update to this.

Comments (30) : PRO Members only. Login. or Join.

Related Reports

Security Fail: ASISNYC Auto Emails Passwords In Plain Text on May 14, 2019
ASIS NYC automatically emails a user with the password the user just entered, in plain text, when one registers for the site / event, as the...
Honeywell Speaks On NDAA Ban, New Non-Banned Cameras and Cybersecurity on Aug 06, 2019
For years, Honeywell has depended on Dahua, a company with a poor cybersecurity track record and now banned by the US NDAA, for the development and...
Hikvision OEM Directory on Aug 13, 2019
The Chinese government-owned and US-government banned Hikvision has become the world's largest video surveillance manufacturer and generally hidden...
Axis Suffers Outage, Provides Postmortem on Aug 15, 2019
This week, Axis suffered an outage impacting their website and cloud services. Inside this note, we examined what happened, what was impacted...
Uniview OEM Directory on Sep 11, 2019
This directory lists 20+ companies that OEM products from Uniview, with a graphic and links to company websites below. It does not cover all...
3 Weeks Later, Honeywell Still Cannot Say Whether They Are Vulnerable To Dahua Wiretapping [Now Admits] on Aug 27, 2019
The Dahua wiretapping vulnerability and Dahua's decision to delay disclosing it until IPVM inquired underscored problems with cybersecurity and...
US Army Base To Buy Banned Honeywell Surveillance on Sep 17, 2019
The U.S. Army's Fort Gordon, home to their Cyber Center of Excellence, has issued a solicitation to purchase Honeywell products that are US...
Dahua New Critical Vulnerability 2019 on Sep 23, 2019
Dahua has quietly admitted 5 new vulnerabilities including 1 critical vulnerability with a 9.8 / 10.0 CVSS score and 2 high vulnerabilities (scored...
Wyze Massive Data Leak on Dec 26, 2019
Wyze has exposed millions of user's data, as reported by Twelve Security, and confirmed by IPVM, who has spoken with Twelve Security and reviewed...
Stop Blaming Your Employee, Wyze on Dec 30, 2019
Wyze management is at fault for its massive data leak, not its 'employee', as it has centered the blame on. While blaming an employee is clever...

Most Recent Industry Reports

Hanwha Wisenet X Plus PTRZ Tested on Feb 14, 2020
Hanwha has released their PTRZ camera, the Wisenet X Plus XNV-6081Z, claiming the "modular design allows for easy installation". We bought and...
PRC Warns Against China Video Surveillance Hacks, Hikvision Targeted on Feb 14, 2020
Hackers are targeting China video surveillance manufacturers and systems, according to the PRC's main cyber threat monitoring body. The hackers...
IPVM Conference 2020 on Feb 13, 2020
IPVM is excited to announce our 2020 conference. This is the first and only industry event that will be 100% sponsor-free. Like IPVM online, the...
Bosch Dropping Dahua on Feb 13, 2020
Bosch has confirmed to IPVM that it is in the process of dropping Dahua, over the next year, as both IP camera contract manufacturer and recorder...
BluB0X Alleges Lenel, S2, Software House Are Dinosaurs on Feb 13, 2020
BluB0X is running an ad campaign labeling Lenel, S2, Software House, Honeywell, AMAG and more as dinosaurs: In a follow-up email to IPVM,...
London Live Police Face Recognition Visited on Feb 13, 2020
London police have officially begun using live facial recognition in select areas of the UK capital, sparking significant controversy. IPVM...
Converged vs Dedicated Networks For Surveillance Tutorial on Feb 12, 2020
Use the existing network or deploy a new one? This is a critical choice in designing video surveillance systems. Though 'convergence' was a big...
Monitoreal "Completely Autonomous" Home AI Tested on Feb 12, 2020
Monitoreal claims to allow users to "see the things you want (people, vehicles, animals) and ignore the things you don’t”, using AI to distinguish...
Cisco Video Surveillance Is Dead, Long Live Cisco Meraki Video Surveillance on Feb 11, 2020
A dozen years ago much of the industry thought that Cisco was destined to dominate video surveillance. They stumbled repeatedly, failing. Now it is...
BICSI For IP Video Surveillance Guide on Feb 11, 2020
Spend enough time around networks and eventually someone will mention BICSI, the oft-referenced but only vaguely known standards body prevalent in...