Network Security Audit App (March Networks) Examined

Author: Brian Karas, Published on Dec 01, 2016

Verifying one's video surveillance devices are locked down against common cybersecurity vulnerabilities is increasing important, as hacks using video surveillance have become more prominent.

March Networks has released an enhanced mobile app to audit these issues.

Can you verify your recorder is locked down against common cybersecurity exploits? 

In this note, we examine the app, and identify what it checks, and what it overlooks, when it comes to enhancing the network security of their products.

********* ***'* ***** ************ ******* *** ****** **** ******* ****** cybersecurity *************** ** ********** *********, ** ***** ***** ***** ************ have ****** **** *********.

***** ******** *** ******** ** ******** ****** *** ** ***** these ******.

*** *** ****** **** ******** ** ****** **** ******* ****** cybersecurity ********? 

** **** ****, ** ******* *** ***, *** ******** **** ** checks, *** **** ** *********, **** ** ***** ** ********* the ******* ******** ** ***** ********.

[***************]

GURU *** ********

*****'* **** *** ** ******** ** ** * ******* ******* **** ****, ****** towards ********** *** *********** **** **** ***-*****. ***** *** *** documentation *** *************** **** **** *** ***, ****** * ******* ticket, ** *** ** ** ******* * ******* *** ** necessary. *** *** ***** ** ** ** *** **** *** as *** ********, ***** ** ******* **** ** ******** * wifi ****** **** *** ******** ** ****** * ***** **** hotspot *** *** ***** ******* *** *** ** ******* **.

* ********* ***** **** ***** ******** **** **** *** ******* app ********* *** *********:

Security ***** *************

***** ********* * ******** ***** ********** ** ****** ** ****, ***** ******** * ***** ****** check, ******* ** *** ******** **** **:

  • ***** *** ***-******* ***** ********
  • ***** *** ***-******* ****** ********** *****
  • ***** **** *** **** ** ****** (*** ** ********* ******* temporarily *** ************ *** ********)
  • ***** **** **** ** ********
  • ***** *** *** **** **** ** *****

*** *** ******** ****/*******/*** ****** *** ******* **********, ********* ** what ** *****. ***** *** **** ****** * *** ****** to ***** ***,**** ** * ****** *** ** ** ***** *****.

Limitations ** ***** ***

*** **** ******** ***** **** *** ******* *** ****** ***** on *** ********, ** ****** ****** ** *** ******** ** report *** *************. *** ********* **** **** *** ******* ** detect ******* **** ***** ** ****** *** ******* ** ****** back ** *** ***. **** ***** **** * ******** ***** pass *** ***** ***** *****, *** ***** ** ******* **** form ** ****** ********, ** ******** ********* **** *** ** an ******** ******. ** ******, *** ******* ** * ******** being ****** ** *** *************** *** ******** *** ***** *****, it ** ********* ** **** **** * **** "****" **** the *** **** *** **** *** ****** ** ********** ****** ** attacks, *** ** **** ******** **** ** ** ** ***** not ** **** ******.

******* *** *** *** **** ** **** ** * ***** network, *********** *** *** *** **** ** ************ ***** ** on ********* *** ********* ** ****** **** ** ******* ******** settings **** **** ******* ** ****** ******** *****.

Good ***** **** 

**** **** *** *********** ***** *****, **** ** ***** * good **** ** *****'* **** ** **** *********** ****** ******, and ******, ***** *********. ** ***** *** *** *** ******** to ******* **** ******, **** ** * ******** ********* ***** to ****** **** ** ***** ******** *** **** ********* ** the ********, *** ***** *** ********* ** ** **** **** will *********** **** ******** **** ****** ******** *** ************.

What ***** ***** ************* **?

**** ******** ************ *** ******** ** ***** ************. **** ********* enhancements ***** **** **** ***** *******:

  • **** ****-**** ** ******** ****** ***** *** ****** *** ***** for ***** **** ***** **** *** ** **** ***************
  • ******-***** ********** ** ***** **** ****** ***** *** ****** *** also ******* ****** ********* *****
  • ******** (*** ********** *******) ********** ******** **** **** *** **** used ** **/**/** ****

*** **** *********** ** *** ******** ***** *** ***** **** app ************.

Comments (2)

Michael Miller

12/01/16 06:16pm

** ***** ** **** ** **** * ********* **** ** scan ******** ** *** ** ******* ****/********* *** **** ** a ********* ** ****** *******. ********* *** ***** ***** ***** the ********* ****.

Undisclosed #1

12/01/16 07:33pm

...**** ******** ***** **** *** ******* *** ****** ***** ** the ********, ** ****** ****** ** *** ******** ** ****** its *************

** **** ** *** ***** ********* ****? *** ***.

** *** *********** *** **** *** ***** ** **** *** recorder's **** *** **, *** *** **** *** *** ***** you ** *** ***** **** *** ****** **** ** ***?

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Most Recent Industry Reports

Final Day Save $50 - IP Networking Course September 2017 on Aug 17, 2017
Today, Thursday, August 17th is the last day to save $50 on the September IP Networking Course. This is the only networking course designed...
Directory Of Consumer Security Cameras on Aug 16, 2017
The consumer camera segment continues to grow, with new startups and models from existing players released seemingly every month. In this report we...
Cat 5e vs Cat 6 vs Cat 6a Network Cable Usage Statistics on Aug 16, 2017
Cat 5e? Cat 6? Cat 6a? What do integrators use in practice, today? 140+ integrators told IPVM. Here are the results: For those who want to...
Hikvision Responds To Cracked Security Codes on Aug 15, 2017
Hikvision has responded to IPVM's report on Hikvision's security code being cracked, both with a 2 page update to dealers and communication...
Stolen Video NVR / DVR Statistics on Aug 15, 2017
"But what happens if someone steals my recorder?" Anyone who has done more than a handful of jobs has probably heard this question several times....
Hikvision Europe Cutting Out Unauthorized End User Sales on Aug 15, 2017
The days of anyone buying Hikvision from anywhere off the Internet are numbered, at least in Europe, if Hikvision's plan comes to fruition. In...
Axis Laser Focus PTZ Tested on Aug 14, 2017
Axis has been touting its new Q6155-E laser focus PTZ as 'always in focus' and 'always in color'. Does it really deliver? We bought and tested...
Vulnerability Directory For Access Control Cards on Aug 14, 2017
Knowing which access credentials are insecure can be unclear, especially because most look and feel the same. Even the most insecure 125 kHz types...
IP Camera Specification / RFP Guide 2017 on Aug 14, 2017
RFPs are hard. Do them 'right' and it takes a lot of knowledge and time. Do them 'wrong' and you can be (a) unwittingly locked into a specific...
Cellphone Usage Issues For Integrators (Statistics) on Aug 11, 2017
Cellphones clearly offer significant advantages in communication and problem solving. But they can also be a major pain point if employees...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact