Why Surveillance Pros Rationally Won't Care About The Massive Dahua Attack

Author: Brian Karas, Published on Oct 05, 2016

The physical security industry has been fairly indifferent to cyber security (e.g., see the Cyber Security For Video Surveillance Study).

Here, we explain why most video surveillance integrators will not care about the massive Dahua attack, even if they understand it, and its effects.

We look at what led to the existence of Mirai, and why they would rationally be indifferent.

*** ******** ******** ******** *** **** ****** *********** ** ***** ******** (e.g., *** *** ***** ******** *** ***** ************ *****).

****, ** ******* *** **** ***** ************ *********** **** *** **** about *** ******* ***** ******, **** ** **** ********** **, and *** *******.

** **** ** **** *** ** *** ********* ** *****, *** why **** ***** ********** ** ***********.

[***************]

Mirai ****** *** ** ************ ********* *** **** *************

***** ******** *** ******* ********** ** ****** ** ***** ****** scenario. *** ***** ** ** *** **** ** *** ************, Dahua, ******** * ************* *** ******* ** ****** ****** ** their ******* **** ** *** *** *** **** ** ******* it. *** ****** ** ** *** **** ** ********** ******* default ********* *********, ****** ** ********** **** *** ********* ** gain ****** **** **** ******* ** ******.

A **** ******** **** *** **** *** ****

***** ** * ********, ***** *** ********* ** *** **** for *** *** ********, *** ** **** *** "****" *** host *** ****** ** **********. *******, ** ****** *** ****** relatively ********** ** *** *** ****, ***** ******** ** ** operate. **** ** *** **** ** *** ****** **** ** the ******** ******** **** *** **** **** ********* ***** *****, it **** *** ****** ***** ********.

Mirai Is *** ***** ***

**** ******* **** ***** ******** ****, ****** ****:

  • ****** *********
  • ****** **** ****
  • **** ******* ****
  • ****** ******** *******/********** ** ****
  • *** ****

***** ** *** ****** ** *** *** ** **** ***********, it **** ******** ******* ** ****** ******* ******* ***** ******** sites.

***** ******** ** ***** ** *** ****** *** ****** ******* or ******, **** ** *** ***** ****** *** ********* *** outrage *** *******, ***** *** ****** ***** ******** *** **** on ******* ******* ******* ** ** *********.

Fixes **** *****

******** ********* *** ********** *** ******** *** ***** **** *** (from *** ***** ***********) ******* **** **** ** ** ******* that *** *********** ***** **** ** ***, *** **** ***** customers *** ****** ** **** ** *** ***. ****, *** Mirai ****** ** ****** ** ******** ** ***** *** ******, or **** *****, ****** ***** ** **** ***** ****** **** causes ****** ** ******** ****** ********* ** *** **.

Why *** ****** ****

******** ******* ****** **** ****** *** ******** ***** **** *** installed, *** *** ************** *** ******* ******** (** ******) ** risk. ** ** ******** *** **** ** ****** ******* ******, and *** *** ****** ** ********* *****. **** *** **** ******** in *** **** **** ******* ******'* **** ******* ******** ** the ********, *** *** *****-******* ****** ******* ** ***** ** setting *** ******* *** **** ******* **********. ********* ******* ********** shutdown ** ***** *** ******* ***** ******** ****** ** ******** may ***** ***** *********** *** ********** * "******" ******.

Vote - ** *** ****?

Comments (18)

Undisclosed #1

10/05/16 02:22pm

** **** ********* ***** ********** *************** ** *** ****** ******* the ******* ** ***** **** ** ********** ******** **** ***** to **** ****. *** ***** ** ****** **** ****, ***#*, personal ***********, *** ***** ***** **** **** ******* ** *** past *** *****.

*** *** **** ** **** **** **** *** ***** *** radar *** ****** ********. ***** *****'* ** ******* *******, *** (or ** ***) **** ****** *** ****** ** ******* *** one.

* ****** ** ******** ** *** ****** ****** **:

*. **** *** **** ***** ** ******* ** ****** ********?

*. **** *** ****** ******** ***** ***** *** ** ********?

Undisclosed Integrator #2

10/05/16 02:36pm

*** ****** ** *********** *** ****** *** ***** *****? *** customer, *** **********, ** *** ***********? *** ************ *** ******* new ******** *** **** *****'* ******** *** *** ***** ***** it's **** *********. *** *** ********** ** ***** * *** of ***** ** **** * ***** ** *** ***** *** upgrade *** ********.

***** *** *** ***** ******* *** ** ***** ** **** for ************* ** ***** ******** *** **** *** ***** ******* to ******** *** ********* ******* ** **** **** **** ** integrator ***** ********** ******* *******.

Robert Shih

SavvyTech Security | In reply to Undisclosed Integrator #2 | 10/05/16 03:09pm

********, ******** ****** ******* *** **** ****** * ***** *** set ** ******** *****. ******* ***** **** ** ****** **** mechanism. ** ******* **** *** ******, ****'* *** ***** ********** then.

Undisclosed Integrator #2

In reply to Robert Shih | 10/05/16 04:13pm

**** ***** ** ****, *** ** **** ********* ** ****** for ****** ******** ****** ***** *** ** **** ****** **** term. ***** ***** **** ****** ******, *** ** **** ** the ***** *** ******* **** *** ****** ******* ****** *********** back ** *** ************ *******.

** ****** **** *** ** ** *********** ******** *** *********** to ****** *** ********* ** ************* ***** **** **** ***** with **.

** *** ************* ***'* **** *** ********* ** ** ****, then **** ****** **** **** ***** ***** ******** ******* ** create * ********.

*** **** ** ******** ******** ******** ** ******** ******* ** with ******** ****** **** *****'* **** ***** **** ****.

Robert Shih

SavvyTech Security | In reply to Undisclosed Integrator #2 | 10/05/16 04:39pm

***** **** *** ******* *** **** ***** ********, ******* ****'** had ******** ********* ***** ******** ******* ***** ****** ** ***-**** devices *** ****** ******** *******, **** ***'* **** **** ** with **** ****** ** ***** ** **.

***** ******* ** *** ** ****** *** ********; ************, **** could ****** ******* **** * ********* ********* ** *** *** point.

******* ** ***, ** *** ******** **** *** ***, *** in *** **** *****, ***** ** ** **** ******** **** can *** ********** *** ***** ******* **** ***** *** ***. I **** *** **** ** ****-******, ********* ****** *********** *** camera ********, *** * ***** *** **** ** *** ********* updates ****** **** ** ****** ************.

* ******** **** ****** **** ****** *** * ******* ********** sponsored ******* (******* ********* *******) ** *** **** ** * backdoor ** ********* *** ********* ** * *********** *****. ** any ******* ***** ******** ****** ****** **** *** ****, ********* will ********* *** **** ** ***** ********* *** ****** *** trend, ********** **** ** ** ** ********* *** *******.

** **** ******* * **.

Undisclosed #1

In reply to Robert Shih | 10/05/16 10:25pm

* *** *** **** ***** ** **** *******. ** ****** comes **** ** *** ********* *** *** ** *** ************ being **** ** ******** **** *******.

************ ****** ***** *********** ***** ****** *** ** *** ******* ** *** ******** pushes ***** *** ** * **** ****. ** ***** **** point * ***** **** **** ** *** * ***** ****. Brian ***** ****** *** ***** ** **** ****** **** ******* signing ***** **** ******* ****. ** ******* ** ******* **** would **** ****** **** ** ** *** ************ ******* *** update?

******* ******* ** ********** ****** ******* **** ******* * *** ** ******* ******* ** ****** **** ******* ********** ****** ***** ** startup.

Thumbnail brk1

Brian Karas

IPVM | In reply to Undisclosed #1 | 10/05/16 11:05pm

******* ******* ******* (** **** ********) **** *** ******** ********** from *** ************, *** *** *** **** ******** **** ** altered. ** **** *** ******* ** ***** ***** *** ******** is ********* ******** ** *** ************ (****** ************ ** ************). In *******, *** **** ** **** ******** ***** ** *** manufacturer *****.

Thumbnail brk1

Brian Karas

IPVM | In reply to Robert Shih | 10/05/16 05:03pm

*** *** ** ******** **** ** **** ******/********* ********, ***** is ** ******** **** *** **** ****** *** ***** * while (****** *** **** ****** ** ******** *******).

Robert Shih

SavvyTech Security | In reply to Brian Karas | 10/05/16 06:15pm

***** *** **** **** ** *** **** ** **** ****** if ** *** *** ***** ** **, *** *** ******** holds ****. ** ****** *** **** ** *** ** ****** this, ***** *** ***** *** ***** **** *** **** ********* of **** ** *** ******* ****** ****** ***** ****** *************.

*** ** ******, *'** *********, ******* ********** + *********.

Andrew Hogendijk

In reply to Robert Shih | 10/18/16 12:56am

*** ***** ** ***** ** ******* ** *** **** ** security, **** *** ****-***** *** ***** ******. ***** ** **** source ** **** ******** **** ********** *** ********* ******* (*** the **) **** ******** **** ** *** *******, *** **** not ******** ** **** ***** ** ***** *** ***** ** a ***** ******** ******** ** *** ************* ********.

*** *******, ********* *** ******** ***** ** *** ********* ** computer. *** *** *** ******** ***** ************ *** **** **** on ** ** *** *** *********** **** **** **** ** thing, ***, *** **** ** *** **** ********* ***, *** cannot **** *** ** **** ******* * ******** ****** **** provided ** *** ** *** **** *************. ** ***** *** OS ***** ** **** ******, *** *** ***** **** **** is ** **** ****** **** - **** ******** **** ** actually *******? **** ** **** * ********? *** ** **** tell? **** ***** * '*******' ******* **** ********* ****** ********?

** ***** *** ****** *** ***** ** **** **** * hardware ***** ** **** - *** ********** ** *** *** features, *** **** *** ****** ******** **** **** ***** *** particular ****** ****. ****** *** *** ***** *** ************ *** are ******* ***** *** ***** ** ** *** ****** ****.

** ** ** **** ** ******** ***** ******* *** ******* both **-**-**** *** *********** ******* ******** ************** ******** * *******-**-***** approach. **** ** *** ********* **** *** ********** ******** ******** has ********* ******* ** *** ** ******** *** ** * separate *** *********** ********. ***** ** ** '*****-***' ** ****** bullet ** ****** **** *************.

*** **** ***** *** * *** ***** ** ** ****** an ** ***** ****** ****** ** ** **** ** ********* entirely **** *** ******** *** ******** ****. *** **** ****** it ** ** ** ******** ** **** ***.

** ** *** *** *** ******* ** ****** **** **** firmware *****. *** * ***** ***** ********** *******, ****** ******* and **** **********. **** *** ****** ** ******** - *** far ** *** ** ** ********** ******** ****?

Undisclosed #3

In reply to Andrew Hogendijk | 10/18/16 01:03am

...*** *** ***** **** ***** **** ****** ****...

*** ******* * *** ** ******.

*******:*** ********* *************

Andrew Hogendijk

In reply to Undisclosed #3 | 10/18/16 01:44am

*******! ** **** ***** *** ***** ** ******** *** ********* and ** ****** ** ***** *** ******* *********** *********.

Undisclosed #1

In reply to Undisclosed Integrator #2 | 10/05/16 10:16pm

"*** ****** ** *********** *** ****** *** ***** *****? *** customer, *** **********, ** *** ************?"

**** ** *** **** ********. ***** ***, *** ****** ***** to ** "******". **'* **** ** *** ***, ***** *** points **** ***** ** ****** **** **** ****.

** ** **********: * **** *** ************ ****** ****** ****** in ******* *** ******** ** ***** ********. ******* ****, **** should ****** ** ***** ********** *** *** ** **** ** fix **.

** ** ************: ** ***'* ***** ***** ******** ****. *** integrator ****** ****** ***** ******* ** ******* ******** ********** **** creating ** ****** ******. ** *** **** ** ** *** part.

** ** *** ****: *** ****'* *** ********** ********* * purchase * ********* ******* **** **** ******** ********? *** *** I *** ***** * **** *********** ** *** ********** ** lieu ** ******* ********** ******* ***** *?

Thumbnail images

Marco Sanchez

10/05/16 04:32pm

*'* ******* ** ** *** ***** *** ***** *** ***** no *** **** *** ******** **? **** *******.

Robert Shih

SavvyTech Security | In reply to Marco Sanchez | 10/05/16 06:29pm

******* ********, ******* ** ***** ********** **** ******** ******* ** all **** *** ***** *** ** ****** ********** ******, *** in *** *** **** **** ***** **** ******* ** ************* needing ******* ******** *** ******* ********** **** ***** ******** ********, the ********** **** ** **** **** ******* *** ****** ** well.

******* ********** *** ****** *** *** ** ******** *** ******** that *** *** ***** ** *** *****. ************* *** **** release **** **** *******, *** ************** ** *** ***. ********** about **** ****** ****** ** ********** ****** ********* **********. ***** took *** **** *** *** **** ***** ********* ** ******* ease ** *****, **************, *** ***. **** ***** ***** ******** were *** ****** ***** ** ***** ** ***** ********. *** the ******* *** ******* ** ***** ********* ** ********* ** all ******.

*** *******, **** ********** ***** *** **'* ***** *** ** actively ***** *** ******** ******* ** ******* *** ************ ************, but **'* *** ***** ****** ** **** ** ************* *** his ***** ******** ********. ** *****'* **** ***** ** ** anyone **** ******* *** ****. ** ***** **** *** ******* that *** ******* *** ** ** *******. *** **** **** he ****** ****** ** *** **** *** ******** ******* ** wanted **** ***** ******** ** *** ******.

*********, *** ***, **'* ******** ** ***** *** ***'* *** the *** **** **. ***** *** ******.

***, * ***** ***, *** * ***** ********** **.

Thumbnail 395fbc4

Ricardo Souza

IndigoVision Ltd | IPVMU Certified | 10/13/16 07:27pm

****, *** **** *'** **** **** * ***** **** ** Software *********** * *** ** *** ****, ******* ****** ***'* care **** ***** ******** ** ** *** ******** *********** ***** they *** *** ** * *** ********.

Undisclosed #3

In reply to Ricardo Souza | 10/14/16 03:33am

*** ** **** **** **** **** **** **** *****, ***** the ******* ***** ****** *** *** *********** ********, ** ** disaster *** *** ****** ** *** ******. *** ******* **** go **** ** **** ** ****** ******* **** ********* ****, until **** *** ****** ** *** **** **** ******.

Thumbnail inpicture gert molkens k2

Gert Molkens

IPVMU Certified | 10/14/16 05:11am

*** ***'* ** **** * ***** ********** ****** *** ** manage ********* ******'* *** ***** ******** *******? *'* ******** * system **** ** ** ****** ** **** *** ******* **** Aerohove, **** ********, *** ***

*** *** ****** ** **** ****** ********* ** ** ** it ******** ** *** **** *** ******* **'* *** ***** time ** ** **.

**** * ****** ** **** **** **** *********** ** ****** new ******** *** ** **** *************

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports

Hikvision Europe Cutting Out Unauthorized End User Sales on Aug 15, 2017
The days of anyone buying Hikvision from anywhere off the Internet are numbered, at least in Europe, if Hikvision's plan comes to fruition. In...
Vulnerability Directory For Access Control Cards on Aug 14, 2017
Knowing which access credentials are insecure can be unclear, especially because most look and feel the same. Even the most insecure 125 kHz types...
Rebooting IP Camera Statistics And Practices on Aug 10, 2017
Dahua cameras automatically reboot weekly, by default. Is this an innovation by the Chinese mega-manufacturer or a sign of a problems? 125...
IP Networking Course September 2017 on Aug 09, 2017
This is the only networking course designed specifically for video surveillance professionals plus it includes live training, personal help and...
Competing Against G4S on Aug 09, 2017
G4S Secure Solutions is a global company, operating in multiple countries and offering a suite of products and services from guards to their AMAG...
Hikvision Security Code Cracked on Aug 08, 2017
Hikvision's 'security code' feature has been cracked and a program generating security codes is being distributed online. IPVM has obtained and...
US Army Bans Chinese DJI Drones on Aug 08, 2017
The US Army has issued a ban on Chinese-made DJI drones. A US Army memo obtained by sUAS News references a classified document from the Army...
Dome Versus Turret Camera Usage Statistics 2017 on Aug 07, 2017
Turret cameras are a growing segment within video surveillance. Indeed, many integrators argued strongly for turrets in an IPVM...
Competing Against Schneider Electric on Aug 04, 2017
Schneider Electric overall does ~$30 billion USD annual revenue. One of its many parts is a building / security systems integrator. Another is...
Most Commonly Used Network Cable Brands on Aug 03, 2017
Every IP camera project uses network cabling. And integrators typically buy such cabling in bulk. But what are the top selling or favorite bulk...

Most Recent Industry Reports

Save $50 - IP Networking Course September 2017 on Aug 16, 2017
Tomorrow, Thursday, August 17th is the last day to save $50 on the September IP Networking Course. This is the only networking course designed...
Hikvision Responds To Cracked Security Codes on Aug 15, 2017
Hikvision has responded to IPVM's report on Hikvision's security code being cracked, both with a 2 page update to dealers and communication...
Stolen Video NVR / DVR Statistics on Aug 15, 2017
"But what happens if someone steals my recorder?" Anyone who has done more than a handful of jobs has probably heard this question several times....
Hikvision Europe Cutting Out Unauthorized End User Sales on Aug 15, 2017
The days of anyone buying Hikvision from anywhere off the Internet are numbered, at least in Europe, if Hikvision's plan comes to fruition. In...
Axis Laser Focus PTZ Tested on Aug 14, 2017
Axis has been touting its new Q6155-E laser focus PTZ as 'always in focus' and 'always in color'. Does it really deliver? We bought and tested...
Vulnerability Directory For Access Control Cards on Aug 14, 2017
Knowing which access credentials are insecure can be unclear, especially because most look and feel the same. Even the most insecure 125 kHz types...
IP Camera Specification / RFP Guide 2017 on Aug 14, 2017
RFPs are hard. Do them 'right' and it takes a lot of knowledge and time. Do them 'wrong' and you can be (a) unwittingly locked into a specific...
Cellphone Usage Issues For Integrators (Statistics) on Aug 11, 2017
Cellphones clearly offer significant advantages in communication and problem solving. But they can also be a major pain point if employees...
Rebooting IP Camera Statistics And Practices on Aug 10, 2017
Dahua cameras automatically reboot weekly, by default. Is this an innovation by the Chinese mega-manufacturer or a sign of a problems? 125...
Avigilon Profits Surge, Stock Jumps (Q2 2017) on Aug 10, 2017
Avigilon said earlier this year they would shift their strategy to maximizing profits. Now, they are delivering it and the stock market is...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact