The Hikvision Hacking Scandal Returns

Author: John Honovich, Published on Sep 22, 2015

With a vengeance.

The last time, the industry mostly shook it off. This time, it is clearly much worse.

In this note, we examine Hikvision's trojan horse app, the company's response, why this is a major concern and who stands to benefit from this.

**** * *********.

******* ****, *** ******** ****** ***** ** ***. **** ****, ** is ******* **** *****.

** **** ****, ** ******* *********'* ****** ***** ***, *** company's ********, *** **** ** * ***** ******* *** *** stands ** ******* **** ****.

[***************]

Hacking *******

**** * ****** ***, * ******* ********'* ********* ******* **** ******. **** *** ******* ** *********** ******** ********** ** *********'* ******** and, **** ******, ***** ****** ** *** ********'* ******* **************. The ****** ****** ** **** ***** ****** *********'* ***** ***** to ******* ****** *** ******* ** *** ***** *********** ******.

** ********, *** **** ******** *** *****'* ******* ** *********: ******* **** ******** ****** **** **** ***** ******* ****** ****. ****, ***** *** * ****** ******** ************* ***** ***** ** **** ******** ****** *** ******.

*** *** ***** ** *** *** ********.

Trojan ****** ***

* ****** ** (****** *******) ********* ****** * ********* **** of *****'* ****** *********** *** (*****) *** ** ****** *****, rather **** ******* ** **** ***** ********.

******: *** ******* ** **** ***** ********* *** ** ******* China's ******** ***** *********** **** ***** ****, ****** ** **** member**** ******** ******** ***** ******** ***** **** *** ***** ** * ****** more **** ** ****.

********* **** **** **** **** ** ***** ********** ****-**** ***, publishing ** *** ******** ***** ***** ********* ** ******** **** malware ** ** ***** ****** *******.

**** ******* ** ******** ** ***** **** ** *** ******'* ******* with **** ******** *********** (*** *** ******** ******* ********** ****). ******* ***, ** ** "******* ** ********* ******** **** *** ********" ********* "****** * **** ***** ****** ** ***** **** ***********" *** "**** *** ***** **** ** *** ****’* *********, ***** ***** be **** ** **** *** ****’* ******** ** **** ******** is ****** **** * ******** ********** ****."

**********, **** ** *** * ************* **** *****, ** ******* had *** **** ** ****** ** *******, ***** ****** *********** (as **** ***** ***). **** *** ******** ** ** ******** exploited **** *** *****.

Response **** *********

** *********'********* ********* (*** ****), **** ********* ******** *** ******* **** *** (* *.**) *** replacing ** **** *** *** ***-******* ***.

********* **** ***** **** **** **** *********** * ******** ******** ****** *** **** **** **** ******* ***** *** issues **** **** *** *** **** **** (********** *.* ******** ******).

****

3500 *********

********* ****** ******** ***** ***** '**** *********' *** *** **** are #* ** *** ******.

** ********, **** *** *** *** ***** #* ** ******* hacked. *** ** ***** ***** ***** ** *** ******* ***/** organization ** ***** *********.

********

*****, ********* ***** ****** ******* ****** ***** ***** * ***** surreal ********* ******** / ******* **** *** ***** "************* *** ***** ************: *** ** ******* **** ** ***** Network." ** *** *******, ********* ********* ***** ******** *** *** **** hacked **********, ** ** ******* **** **** *********** *** ***** secure.

*** **** ******* ****** **** **** *** ********* ******** ***** prominent ******* ***** **** ****. ** ******, ** *** *** cite *** *** *********, ********** ** ***** ** *** ** Office ** ********* *********.

China **********

**********, ** ********** ********* ******* *** ********* ********** **** *********** **** *****, ******* **** ******* ******.

********* ***** ** ******** *** ******* **********, *** ********* ** partially ***** ** *** ******* ********** *** *** ********* ************ from ********** ********* ******* ********** *********.

******* **** ***** ** * **** **** *** ** *****. Probably ********* ** **** *********** **** *** *** **** ** clearly ********* **** ** ***** ** ****.

Update: **** ******** **** *********

***** ********** **** ****, * ********* ******** **** ** *** defense ** *** ********:

**** ********. ********* ******** *** ********* ****. ** ********* *** not ** ****, ***** ***** **** **** ** ****. *** example, *** **** *** ****, ********, ****, ***. **** *** hacked? ******* ***** ********* *** *** ****** ****** ****.

**** ********* *** *******. ** ********* ***** ** **** ************** for ***** ****** ***** ** ** ********** ******* ****'* *****?

Selling ********* ***

** *** **** ********* ***** *******, ** **** *** **** an ******* ************** ** ******** **** **** ** ***** ** **** customers. ********* *** ********** ********** (*** *****, ****** ***** *******, solid ******* *** ***********) *** **** ** **** ********* ** such * ***** **** *****, *** ***** ** ********* *** to **** **** ***** ** *****. **** ** ********* ** serious *** ***** *************, *** ***** **** ***** *************** ***** exist *** **** ** ********* ** *** **** ****.

Winners *** ******

*********, ********* ** * *** ***** **** *** ** *** their ****** ** **-********, ********* ******* *** ***-** *** ** ********* *** *********'* '*****' *** firmware.

***** ********* ** *** #* ****** ** ****** **** ****** manufacturer ** *** *****, ******** **** ****. *******, ** *** low **** ****, *** ********* ****** ***** ** ****:

*****: ***** **** *** ***** ************* ******** * ***** *********** ** ********** ** ****. ***** ************** ***** ***** ******* ***** *** ********* ************ *** **** might ** *** ******* **** *** *** ** ************* **********.

****** / *******: ********** **** *********** ******* ** ******* ***** ********* *** *** ***-*** / budget ******. ***, **** *** *** **** ** **** ************* both *** ***** '*******' *** *** ****** ***** ************ ******** serially ******.

** ******, *** ***** *** *** **** ** ****** ****, so ** ** **** ** *** ****** ** ****, *** Hikvision *** * ********** '****' ** **** **** ** ***.

Comments (107)

Jack Sink

IPVMU Certified | 09/22/15 05:29pm

** ***** ******** ** **** ** ************, *** * ************ really ***** ******* ********** *** ********* ** *** ********** *********** arena ** ****** **** ****** *** *** ***** ********** *** Mom & *** **** ************ ******* ***** ****** ****** *******? Jus' *****'- **** ** ***** **** ********* **********?

Hal Bennick

In reply to Jack Sink | 09/23/15 02:52pm

** ***** ***** ** **** *** **** ** ***** * week ** **********, ** ***** ******. * **** ****** *** many ** ***** ********* *** **** * ****** ****....

Ricardo Souza

IndigoVision Ltd | IPVMU Certified | 09/22/15 05:29pm

**** & ***** ** * ******-***** ***** *** ** ***** to ** ********** **********. * ****** ********* **** ******** ******** here ** ****. **** ***** ** =)

Undisclosed Integrator #1

09/22/15 05:32pm

* **** ***** ************** ******* **** ** *********.**** ****** **** ****. **** ***** ** *** ********* **** being ******, * *** *** *** **** ** *** **** of ************. **** ***** ************ **** *** ******** **** **** as ******* *** ******* **** *** ** ****. ***** ** a **** **** ** ** *** **** *****.

**** ** ****** ** ********** *********** ***** ******** *** ** third ***** ******* ****** **** ***** ******** *******. *** *** Apple ***** **** ******** ** ********** *** **** *** ********** to **** *** ** **** ******** **** ***** ***** *****. Bad ****.

Jon Dillabaugh

Pro Focus LLC | In reply to Undisclosed Integrator #1 | 09/22/15 06:37pm

*** ***** ** **** ***** /*****'*/ **** *** **** ***************, only ** ***** ******* ***** *******. ******* ** ****, ****** in ***** ********** ** ******** *** **** *** ** *** it **** *** ******* ***** ******, ***** ** ** *** other **** ** *****'* ******** ********. *** ******** ******* **** China ** ******** ******* ***** ******* ********** ********, ***** ** reportedly **** ****. ** ** **** ******* *** ******* ****** to ******** **** ***** ***, *****, *****-***** ******* *****. **** third-party ******* **** ** ***** *** ******* ******** **** ** X-Code *** *******.

*** ***** * **** **** ** **** ****** **** ***** can't ******** * **** **** *****'* *******, *** **** ** issues ******* ** *******. **** *** ******* *** ** ** concerned **** *******.

Undisclosed Manufacturer #9

In reply to Jon Dillabaugh | 09/23/15 01:40am

** *** *** *** *****, *********** ***** **** ***** ** a ***** ** ****, **** **** ***** ** *** ***** to ** *** ******* *** *** **** ****** ***** *******, let ***** ********* **** ** ***** * **** **** ****** speed ******** **********, **** *** **** **** ** ** ****. Or ** ***** **** ******* ** ***** ******.

***** ** ** ****** *** *** ***** ****** ******* ** development ***** **** *****. ******* ***** * **** **** **** a ***** ****** ****** **** **** ***** ***** ***** ***** head ********. ***** *** ********* ****** ** ****** *** ***** developer ******. * ** **** ***** ** ** *** *&** from ***** **** *****. ***** ***** *** ***** **** ********* to ***** **** ****.

********* ***'* ** ***** *** ********** *** ***** *** ****. Dahua **** ** ***** ***** ******. ( *** **** **** looking *** *** *** *** ***** ***** ******* **** *** too ****** ** ****** *** **** ***** ) ** ******** using **** ***** ***** ****** ** ********* *** ** ******** forward ** * ****** *****. ****'* ****.

**** ****** ** ******* ******* ***** *** **** ****** ******* like **** ** ** ***** ******** *** ****. *** **** to **** **** ***** ****. "****** ***** ****** ** ***", is **** ** ***********.

**** ** ******** ** ******* *******..

Tim Campbell

In reply to Jon Dillabaugh | 09/23/15 01:15pm

****** ** ***** *** *** ****** *** ******** ** ****** a ******* ****** ** ***** * ***. *****'* ** ****** for * *** ******** ******* *** ** ******** **** *** proper *******.

Michael Miller

In reply to Tim Campbell | 09/23/15 09:23pm

***** ** ******** **** ** ****, ******** **** ****** ******** users ** ****** *******, ********, ***** *** ****** ******** ******* in *** *******, ********* ** ***** ***** *** ******* *********.

****://**********.***/****/**/**/*****-***-*********/

Undisclosed #2

09/22/15 06:15pm

*.**! ****'* ****** *****.

Hal Bennick

In reply to Undisclosed #2 | 09/23/15 02:55pm

**'* * ******** ** * ***-***, ***** ***** ***** ** have ** ******* *********** *** ********. *** ** **** ******* themselves ** ** ****, *****, *** ***********.

John Honovich

IPVM | 09/22/15 07:29pm

*** ***** ******* *********, *** ** *** **** ** ****** this? ******* ** ****.

Undisclosed Integrator #3

In reply to John Honovich | 09/22/15 07:46pm

** ********* ********** ***** ** *** *********. **** ** **** do *** *** *** ****** ***. ***** **** ** ********* not * **** *****. *** **** ** ******* ********* *** getting *** ** ***** ** ****. **** ****** *** *** to ** **-******** ** *** *** ***** ** *** **** couple ** ****. ** ***** **** **** **** *** **** to **** *** ** **, *** *** ******** *** ******* an ****** **** **** "******** **** ****". ** **, **** shows **** ******** **** ***** ****'* ***** ** *** *** trying ** *** **. **** **** ********* *** *** ******** things ******** ** ***** ****? **********, *** *** **** ** get *** ** ***** ** ** **** ******. * **** seen ***** ********* *** *** *** ****** **** ******* ******** and ***** ******* ****.

** *** *** ** *** ***, **** **** **** ** keep * ****** *** ** ****. *** *** ***, **** of *** ********* *** ***** ***** ****. ******* ****** *** Home ***** **** ****, *** ******** ** ****** ****** ***** CC's ******. **** ****** ***** ****** ** ****...** ******. *** it *****’*.

John Honovich

IPVM | In reply to Undisclosed Integrator #3 | 09/22/15 08:23pm

"*** **** ** ******* ********* *** ******* *** ** ***** of ****."

******?

"** ***** **** **** **** *** **** ** **** *** it **, *** *** ******** *** ******* ** ****** **** said "******** **** ****"."

***** ******* *** ******* **** *** ********* *** ** *********** ******** ****. *****'* ** *** ********* ***** **** *** ****.

"**** ******** **** ***** ****'* ***** ** *** *** ****** to *** **."

***, * ** ***** **** **** *** ********* ****** ** what *** ******* **** ***** ******** ****** ** *** ******* they *** **.

**** ******* ** ** **** ** **** **** **** **.

Undisclosed Integrator #3

In reply to John Honovich | 09/22/15 09:15pm

***** ******* *** *** **** *** *** *****, *** **** people’s ******. ********* ***** **** ****** *** **** ******** *** the ******** ** ***** ********* ***** **** ***** ***** ***. The ******** ** ***** ********* **** ***** ***** **** ***. Most ** *** ******** ****** ***’* **** ******* *********. **** you *** **** ***** ****** ** *** ********. *** ** one *** ** ***** *** ******* *** ***** *****.

**** ****** *** ***********, *** ** ** **’* **** ******, it **** ** * ****** ** *** ** *** ************ out. * ***** **** *****. ******* *******, *** *** ****** than **********.

John Honovich

IPVM | In reply to Undisclosed Integrator #3 | 09/22/15 09:19pm

* ***** *** *** **** **** ** **** ********* ** / **** ** ******* ***** ** *********...

Undisclosed Integrator #3

In reply to John Honovich | 09/22/15 09:39pm

* ** *** ****** **** ******** **** * *** ****, what ** ****** ** *** ** **** **** *** *** right ***** ** ****** *** *** ******* ****** **** ***** it. * **** **** **** ** *** ** *** ******** and **** *** **** ***********. *** **** *** **** **, I ******* **** *****.

********* *** ******* ** ** * ** *****, *** * believe **** ******* ******* * **** ******** * *** ****** ago ** ***** ******* ** ******* ***** ******** *** ****. To **** ***** **** ** ***** ********.

John Honovich

IPVM | In reply to Undisclosed Integrator #3 | 09/22/15 09:48pm

* ***** ********* *** ******* / ************* ** **** **** are ***** ***** ***** **** / ******** *********. ******.

Hal Bennick

In reply to Undisclosed Integrator #3 | 09/23/15 02:57pm

***, * **** **** ****** ******** ***** ******** (****** ***********, btw). * ***'* **** ******* ****** *********. *******, *'* ****** lose * ****** **** ******.

Undisclosed Manufacturer #4

In reply to John Honovich | 09/22/15 07:46pm

Jon Dillabaugh

Pro Focus LLC | In reply to Undisclosed Manufacturer #4 | 09/22/15 08:13pm

*** ***** ****** ***** *** * ***** **** *******? *** that **** *** ********* *** **** ** ****. ******, ***** me * ****.

John Honovich

IPVM | In reply to Jon Dillabaugh | 09/22/15 08:27pm

*******??? :)

Jon Dillabaugh

Pro Focus LLC | In reply to John Honovich | 09/22/15 08:31pm

* ***** *****! ;)

Undisclosed Integrator #6

In reply to John Honovich | 09/22/15 11:27pm

*** ******?

Undisclosed Manufacturer #4

In reply to Jon Dillabaugh | 09/22/15 08:31pm

*** ***** ***** **** **** ********* ** * **** **** of *****, ******** **** **** *** ***'* **** *****.

*****://**.*********.***/****/*********************

*** ******* *** ** ***** *** **** *** ****** ******...****://*******.***/****/**/**/*****-*****-*******/

Jon Dillabaugh

Pro Focus LLC | In reply to Undisclosed Manufacturer #4 | 09/22/15 11:35pm

*** ***** ********* **** *** **** ******* *** *** ********* have **** ********** ****?

Undisclosed #5

09/22/15 07:48pm

** *** ******* ** *** ******** **** ****** **** ****, i.e. ******'* **** ******** ***** *******, ** *** **** ******** this.

**** *** ** ****** ** **** *** ***** ***** ****** who ********** **** *** *** ******* ***. **** ** **** clear, *** **** ******* ******* ** *** *** **** *** have ****** ** ********** ** **** *** ******.

** **** ** **** *** ****** ** **** **** *** access **. ** **** ***** *******, ***** **** ******, ******** personal *********** *** *** ** ****.

** ****** ** *** *** ** ****** *** ** ********* you *** ****** *********** ** **** ****** *****, **** ******** etc *** ** *** **** **** **, **** ***** ** bad. *** ********** ***** *** ********* **** ***** **** ****, that *** *** * **** ****** ****** *** ****-***** ******.

****, ***** ** ** ***** ** **** ** *** ****** here ******* **** ******** **** ***** ** * ******** ******* of *** ****. *** ** ****** ** ********* ** *** using *** ***** ***, *** ******* *** ********* *** ****** enough ** **** ***** **** ********* ** *** ***** ** the ********* ****.

John Honovich

IPVM | In reply to Undisclosed #5 | 09/22/15 08:31pm

"**** *** ** ****** ** **** *** ***** ***** ****** who ********** **** *** *** ******* ***."

* ****** ***** ******* ***** ******* ********?

**** **** **** **** *** ***** **** ********* *** ******* from *** **** ********?

Jon Dillabaugh

Pro Focus LLC | In reply to John Honovich | 09/22/15 08:35pm

* ***** ****** *** **** ****** ***** *** *******... *** Tencent, ******, *******, *******, ***

John Honovich

IPVM | In reply to Jon Dillabaugh | 09/22/15 08:41pm

***'** ********* *********'* *************, * ******* *** ****** *** ******* default ******** *** ********* ** ** **** *******, ** *****?

*** *** ***** ***** ********* ** **** **** **** ***** hacking ********* ** *** **** * ******?

Jon Dillabaugh

Pro Focus LLC | In reply to John Honovich | 09/22/15 08:48pm

*** ******** ******* ******* ****'* ****** ** ********, ** ** is ********** ** ** ****, * *****. *'* **** ****** that ** ****'* **** *** *** ** ******** ****, *** just ******* ******. ***** *** ******* ********* ** **** ****. Had **** **** ****** * *** *** **** **** *** comprised, * ***** ** **** **** *******. **** ** * widespread ***** ********* **** *********.

John Honovich

IPVM | In reply to Jon Dillabaugh | 09/22/15 09:05pm

"**** ** * ********** ***** ********* **** *********."

*** *** *** ********* ****** *** ********* ** **** **** time *********** ********. *** **** *** *** ***** **** ********* running**** ** ********** **** *** **** ** ****** ********** ****** *** ****** *** *********.

**** ****** ** * **** ******* ************** ***** *** *********. Think ***** **. **** ***** ****** ****** *** **** ***** that *** *** **** *******? *** ** *** **** ******* incident **** *** ***** * ****** **** ***? *** *** Hikvision ****** **** ***** *** ** ***** ***** ******* ** such *********?

Birger Kollstrand

In reply to John Honovich | 09/23/15 07:56am

*** **** *** *** ***** **** ********* *********** ** ********** **** *** **** ** ****** ********** ****** *** ****** *** *********.

****, * ***** **** ******** **. **** ** *** **** source **** **** ******* *******. **** ********* **** ** **** scroutinous *** ******** ****, **** **** **** **** ** *** "Community" ** **** **** ***** ** ** ******** ** *** code ** *****.

*** ********* ****** ** ******, * ***** **** ** ** the ***** ** *****. ***. ******** ******* ** *********** ** the ***.

John Honovich

IPVM | In reply to Birger Kollstrand | 09/23/15 11:42am

***** *** ******** ******* *** **** ****** / ********** ********* code.

** * ****** * ******** ** *** .*** *********, *** would * ********** ** ******** **** *********?

** * ****** * ******** ** *** **** ********, *** would * ********** ** ******** **** ******?

** * ****** * ******** ** *****, *** ***** * ever****** ** ******** **** *****?

** *** ******** **** *** ******** ****** *** *** ********, than *** ** *** ********.

** *** ******** ** **** ** ****** **** ** ******* else '** *** *********', **'* ** ***.

Birger Kollstrand

In reply to John Honovich | 09/23/15 11:56am

******* **** **** ** ******** *******. ***** **** ***** ******** issues. **** ** * ***** ******* ** *** ************ ***** embedded ** ***********. *****://**.*********.***/****/**********

* ***** **** *** **** * ** *** ***** *********, Apple ** ****** **** **** ** *** **** ***** ****** with ***** ** **** **** *** ** ************* ******* **** advantage **.

*** ***** **, **** ***** **** **** ** ***** ** SW.

**** ***** ************* **** **** ********* ** **** ******** **** whitin *** ************.

John Honovich

IPVM | In reply to Birger Kollstrand | 09/23/15 12:10pm

"*** ***** **, **** ***** **** **** ** ***** ** SW."

***'** ***** ***% **** ***** ******** *** ***** *** ******* of ****.

*** ** *** ***, ******, ** ** **** ********** **** the **** ***** ** *** **** ** **** ** ******** Xcode **** ** ****** ***** ** *****'* **** ********?

Ethan Ace

IPVM | 09/22/15 08:40pm

*'* ****** ********* ** *** ****** ** ****** ****** **** will ****** ********* *************, ** **** **********. ** **** ******* of ******* *** ***** ** *** ******** ******** ***** ** anything, ** *** *****, ** *** **** ********.

John Honovich

IPVM | In reply to Ethan Ace | 09/22/15 08:44pm

*****, ******* ** *********, **** *** ***** ***** ************ ************* with ***** ******* ********* (******* ***** *** ***** ** *****). Highlight *** ********** **** **** ******** ******* ***** *** ** their ***** ************ ************. ***.

** ***** ** **** *** ****** *** ** *** *** been * *** **** ** **** **** ********* *** *** and *** *******. **** ******* ** ** ******* ***** * months, ** ** *** *** **** ********* *** *********.

Ethan Ace

IPVM | In reply to John Honovich | 09/22/15 08:47pm

***** ****'* ****** ** ****, *** *'* *** ****** ****'* a *** *****. *'* ****** ****** **** ** ******* ****: the ******** *****'* **** ***** *************. * ***'* ***** **** instance ** ***** ** ****** ****.

Ethan Ace

IPVM | In reply to Ethan Ace | 09/22/15 08:48pm

**** * ***** ** ******* ** *** **** **% ** the ******** ** ***** *** *** **** ******** ** ************'* **** ******** ***** ****** ******. ***** ** * ***** *** ****** criminal, *** *****'* * *** ** *********, ******* ** *********.

John Honovich

IPVM | In reply to Ethan Ace | 09/22/15 08:57pm

"* ***'* ***** **** ******** ** ***** ** ****** ****."

********* ** *** ** *** **** ********* ***** ************ ************* in *** *****, **** **** ****** ****.

***** ** *********. ****** ******** ** ****** *** ******** ****** / **********.

*** ********** ******* ********* *** ********. ****** ******** ** *** industry ***** ***** *** ******, ****** ** *** ***** *** later.

Brian Rhodes

IPVMU Certified | In reply to Ethan Ace | 09/22/15 08:47pm

***** ****'* *** * *** ** *****, ******** ***** ***** about *** ***.

Undisclosed Integrator #1

In reply to Brian Rhodes | 09/22/15 09:35pm

**** *** ******* ***** ******** ******* ** ** ***** *********** when **** *** **. * *** ******* * ****** *** training *** ****** **** *****.*** ********* ***** ** **** *** **** ****** ****** **** something **** * ************ ******** ***** ** ***** ***** *** rug.

Brian Rhodes

IPVMU Certified | In reply to Undisclosed Integrator #1 | 09/22/15 09:42pm

** ***** ** **** * ***** **** * ************ *****, it **** **** ********** *** ***** ** ***** *********, *** be ******* ** ** ***** *********** *********** ******* **.

Hal Bennick

In reply to Ethan Ace | 09/23/15 03:00pm

******* ********....

Jon Dillabaugh

Pro Focus LLC | 09/22/15 08:44pm

* ***** **********, ******* ** **** ****** *** **. * had *** *** ********* ** ** ***** *** *** * mini ***** *** **** * ***** *** *** ****. *** that * **** **** * ******** ****'* *******, * ***** used *** *** ** *** **** *** ******, ***** *** a *****, *'* *** ** *******.

*******, ** *** ******* ********** ** ***** ** *****. **** have ****** ***** *********** *** ** ********* *** ***** ***********. They, * ***'* ******* ** *******.

Undisclosed #5

09/22/15 09:36pm

****, *** **** ***** ** ***** **** **** ****** ** an *****, ** *** ****** *** ******** ** *********'* ****.

*** * ** ***** ****** *** *** **** **** **** actually ****** *** ***-**** ** ****-****.

****'* *** ***** ***** *****.No *** ***** * **** ******* **** *******.

***** ***** **, *** **** ********* **** *** ********* ** Nov, ********* ***** ****** **** *************** ***** **** ******* ****** access ** *** *********.

** *** ***** *** * ******! **** **** ******* * Chinese ******** ***** "** *** ******!" *** ** ******* *** some *****. **********, *** ******** *** **** **** '******' **** because ** *** ******* ******** *** ***** *******, *** ***** because ***** **** '*******' ******** *********.

**** *** ******** *******, ******* ****** "****", ****** **** ***** coverage.

***** *** *** ******* **** **** **** *** *** *** justice? ********* **'* **** ****, ****, ****, *** **, ****, blah ** ****.

Undisclosed Manufacturer #4

In reply to Undisclosed #5 | 09/22/15 09:42pm

*** *** *** **** ******** *** *** **** ***** ******** at *** **** ****? ** ***** ** * ****** ***** a ****** ** **** ******** ****** **** ***** ** ****** be "********" ** *** ********. ********* *** ****** **** ** passion ** ******* *** ***'** **** ** ** *** *** money!!!

Undisclosed Integrator #3

In reply to Undisclosed Manufacturer #4 | 09/22/15 09:57pm

** ********** ** **** ***** ********, **** ** *** ** alerted *** ** *** ********* *** **** ********* **** ********* of *** *******. * **** ****** ********* ********** ********** ***** with ***** ********** ** *** ******* **********. **** ** *** customers *** *** ************* ** *** ** ** ****’** *** as ******* ** ***** ** ** ***. ** **** * mentions *****, * **** **** *********** ******* ********* ******* ***** honest ***** ********* *** **** ********.

* **** * ******** *****, **** ** **** ******* ** the ********* ** *** *******. * **** ****** ********** * have ** *** *******. * ***** ********, **** **** **** sign *** ** **. ** ****’** ******* ** ***** ** the **** ** * ********* ******* **** ***** **** ** will *******. ** ****, ** **** *** *** *** ******** say ** ** ********* *** ****** ******* ****.

John Honovich

IPVM | In reply to Undisclosed #5 | 09/22/15 09:46pm

****'* * **** ************** ** *** ******** **** ** *** industry.

*** **'* **** ********** ********* ********* ***** *** * ******* event ***** ***** *** ******* *** *** *** *******. *** the *********** ** ******* ***, ** *** *** ******* ******.

*******, ***** **** ********* *** ** **** ******* ******* **, if **** ** ***** *** ** *****, * ** *** sure **** *************** ** ********** ** ********** ***** **** ** they *** *** ******** **** ** ***** *** *** *** customer ** *****. ** * *** ** ********** ******* *********, I'd **** ** ******** ** ** ***** ** ****** ******. It's *** *** **** ** **** * ** *********** ******.

**'* *** ***** ** *** ************* * ******* ***** *** hacked **** *** * ***** ***** ******, **'* ******* ***** to *** *** ******* *** *** ******* *** *** * major ********* ** ~** ******, *** **** **** *** ****.

Undisclosed Integrator #1

09/22/15 10:01pm

***** ** **** ****** ** ****** **** * ***** **** is ** ***** *** *********.

John Honovich

IPVM | In reply to Undisclosed Integrator #1 | 09/22/15 10:03pm

***** ** **** ******, * ***** * *** ** ****** don't ****!

*** ******* *** **** ** **** (*) **'* **** **** (so ******** ******) *** (*) ***** **** *** **** ** be **** ***** ********* ** ***** ** *** ******** ****** the ***** ** *****'* * ****** *****.

Hal Bennick

In reply to Undisclosed Integrator #1 | 09/23/15 03:03pm

* ***** ** ****** *** ***** ** ***** ** ***** booth ** *****, ***** *** * ***** ******, *** **** start ******** **************.

Undisclosed #2

In reply to Hal Bennick | 09/23/15 03:11pm

***... **** ******.

*******’* ******** ************* *** ******* ******* ***** ********** ** ****** ******** ****.

*******’* ***** *** ****** *** ******** *********** ******* ************* ***** *******

Hal Bennick

In reply to Undisclosed #2 | 09/23/15 04:09pm

*** *** **** *******, **** * ****** ****. *** *** sake ** **********, ******-******* ** **'* *** ******, ***** ** Hanwha. (*****://**.*********.***/****/******) ******* **** *** *** ******** ***** * **** ago ** ** (****://****.***/*******/****). *** ******* * **** *** *****'* make ****** *** ***, ** **** *** ** *******, ***** I *********** **** ** ** **** ***... *****://***.*******.***/*****?*=-**********

***** **** ***** -> ** ******, ***** -> ********, **** Lee -> ********* ******, **** -> ******, **** ****** -> Time ***., **** *** -> *****, ********* -> ********, ******** -> *** *** *** *********.

John Honovich

IPVM | 09/22/15 10:23pm

***** ********** **** ****, * ********* ******** **** ** *** defense ** *** ********:

**** ********* *** *******. ** ********* ***** ** **** ************** for ***** ****** ***** ** ** ********** ******* ****'* *****?

Jon Dillabaugh

Pro Focus LLC | In reply to John Honovich | 09/22/15 10:41pm

**. ***** ** **. ***** ***. ***, ** *** ********** dev ****, ** ** ***** ******* *** *** ***** ** hand. **** *** *** ******* ** *** *******. *******, ***** is **** ** ***** *** ******* ** *** ** ******.

Undisclosed Manufacturer #4

In reply to Jon Dillabaugh | 09/22/15 11:41pm

*** (****** ******* ***) *** *** ******* ****! **** ********** their ********/*** ******** **** *** ** ****** *** *** **** happens ** *** ********.

********* *** ***** *** ************ ** *** ********.

** ***** ***** *** ***'* ******* ***** ******** ******** ** delusional.

John Honovich

IPVM | In reply to Undisclosed Manufacturer #4 | 09/22/15 11:43pm

**, *, * ***** *** **** **** **** *****... **********.

***'* *** (********* ******) ***** ***** *** ****** ** ******** are ******.

Jon Dillabaugh

Pro Focus LLC | In reply to Undisclosed Manufacturer #4 | 09/22/15 11:57pm

*'* ***** ******* *** *** **** ** **** ************... /*** roll/

John Honovich

IPVM | In reply to Jon Dillabaugh | 09/23/15 12:01am

******?

**** ************? *** ***** ******** **** *** *** *** *** 3 ***** ******* ********* ** *** **** ** ******?

*** *** ****** ****, ********, *******, ****, ** **** * few, ************************ **** *** ***** ** ************* ****** **** ********* ***?

**** ** *** ** ***** ** ***** *** ** ****-*******, for **. **'* ****** ************* **** *** ******* *** ******** issues *** **** ** *** ****** **** ****.

Jon Dillabaugh

Pro Focus LLC | In reply to John Honovich | 09/23/15 12:37am

* ******* **** *** *** *** *** ****** *** * have **** ** *** ***** ** *****. **** * ** asking *** ** * ****** ** ** *** ***** ***** that **** "**** **** *** *** ********". **'* *** **** possible, ** ***** *** ** *** ***** ** ** *******. There *** *** ** *** ****** ******* **** **** *** an ********** *** ** **** ** ** *** **** ******* dev. ** **** ** ******* **** *** ****** ** *** time ** *** ******* *** *** **** *** ******, *****. This /*****/ ** * **** ******, ******** **** *****. * don't **** *** ***** **** ***** *** ***** *****/***** ******** issue, *** ** ******* ***** ******** ***'* **** **** ******. But, ** ***** *** *** ******* ****** ***** *** **** based *******. * ****'* ********* **** *** ******* ******** ** the ******* *** **** ** ********. *** ******'* *** *** of *** ****** *******, ****** *** ******* **** ******** ******* cache *** *******. **'** **** ****** **** **** **** ** well.

John Honovich

IPVM | In reply to Jon Dillabaugh | 09/23/15 01:01am

"**'** **** ****** **** **** **** ** ****."

***, *** *** ****** ** ****** **** ***** ****** **** with *********? **** **? ***'** ****** ******** **** * ********* fanboi.

****** *** ***** '*** *******' ***** *** *********** ** *******.

"** ***** *** *** ******* ****** ***** *** **** ***** company."

* *** *****: **** *****, *******, ** **** **** ******** near *** ******** / ********** ******* ****** **** ********* ***?

*** ****** ** ********* **.

Jon Dillabaugh

Pro Focus LLC | In reply to John Honovich | 09/23/15 02:15am

** ********, *'* * ***** "******". *'** **** **** ***, and **** ***** **** *** *** **** ****, *** * have **** *** **** *****.

** ***** **** *** **** ** **** *** ** ****, but ******* ****** *** ***** ******. ** *** *** **** or **** ***** *** ***** ***** ******* *****? ** *** about *** ******* ******* ******* ****** *****? ***** ***** ** as *** ** ****** ** *** *** ********.

** ****** ******** ***'* ******* ** *** *** ** ** fault, **** ***, **'* *** ********** ** *** *****? ***** this ******** *** ***** ** ****** **** *****? ***** ***** be ***** ********? **** ** *** *** ***** **** ****** are?

**** ** *********** *, ** **** ******* *** ******* ** the *** (** ******* *****), *** ***** **** ****** **** patriotic ******?

Undisclosed Manufacturer #4

In reply to Jon Dillabaugh | 09/23/15 02:22am

"*** ********** ** **** **** ********** ********* *** ************ ** Central ************ ****** *********** ** *** ***’* ****** ***-****** ******** conference"

Undisclosed #5

In reply to Jon Dillabaugh | 09/23/15 02:47am

...*'* * ***** "******"...

** ******** ****, ******* **** **** ******:

********** = *** *** *****

Jon Dillabaugh

Pro Focus LLC | In reply to Undisclosed #5 | 09/23/15 03:20am

****'* ***** ******! *** *** *** ****** ** ***** * to **** **** *****.

Undisclosed Integrator #7

09/23/15 12:52am

** ********* *** ****** **********. ******* *** *** ***** *******, what ******* **** ** ****. *** **** ** ******** **** the *** ****. ** ***** * ****** ******** ** *** vms ********* ** ** *** ***** **, *******, ****** ** android ******. **** **** ** *** **** ** ** ******* this.

**** *** *** **** ***** ************...******* *** *** * ****** locker ***** ** ** ** *** *'* *******....******* *** *** into ** *** *** **** ** ** **** *****......

****** ***'* **** *** ***'* *** *********. *** **** ** people ** *** **** ******** ** ** **. ***** ** the ********?

- ** * ** ** *** ** * ******* ****** a ********.

- ** * ** ** *** *******'* **** *** ****** viewing *** ********

- ** ** ******* ***** ** ** ****** ******** ** the *****.

**** ****** ** **** **** ***** ** **** *****..***** ***

Undisclosed #8

In reply to Undisclosed Integrator #7 | 09/23/15 01:03am

**** ****************.***

**** ****, ******* *** ********** ********* **** ** ***** *********** tool *** **** ******** ** ***** ********** **** ********* ********* software **** **** *** ***** *******.

*** *******, ****** **********, ***** ** ********** *****’* ***** ********, which **** ** *** ********* *** ******** ****** **** **** apps **** *** *** ** *******, *****, *** ***** *******, before ********** **** ** *** *** *****. ** * ********* has ********** ********* ** ***** ********, **** **** **** ******* include ******* ******* *** ********* ********* **.

******** ********** ** *** ***** ******* ** ****** **** *** in *** ****, *** **********it **** **** ********** ********* *** ************ ** ******* ************ ****** *********** ** *** ***’* ****** ***-****** ******** ********** ** ****. ***** ********* **** *** ************* ****** *******,

******** **** **** **** ******** *** ************************************ *** *******.** ***** ** ******** **** ** **** *** *** ***** **** **** *******, including******, *** ** *** *****’* **** ******* ********* ****, **** hundreds ** ******** ** *****, ********* ** ****. **** ******** with ********** ******* *** ******* ** ******* ** **** ****** asking *** ***********, **** ** *** ****’* ****** ********; ******* what *** **** ****** ** *** *********, **** ** ********* from ******** ******* ****; *** ********** ***** ***** ** ***.It’s *** ***** *** ** ****** *** ******* ** ** **** *** ***** ** *****.

*** ***’* ******** ** ****** *** ******** ** ***** ******* included ******** * ********* ******* ** ***** ** ***** ******* into ****, ******* *** ********* *********. **** ******** ** *****:

*** *********** ******* **** **** *** ********** * *** ** manipulate ***** ** **** ** ***** ***** ** * ******* for ********* *** ********** ******* **** **** ******* ** ***** users *** ********* **** **** **** ***** **** *** ******** Xcode. ** ***** *****, ** ************ *****, *** ***** ***** compromise *** ******* *** ******* **** ** ****** **** **** made ** * ******** ********* — *********** ******** ** ******.

*****, ***** ************ *************** ********** ** ****** **** *** ******* ** ***** **** have ********* ** *** ******** ***.

John Honovich

IPVM | In reply to Undisclosed Integrator #7 | 09/23/15 01:08am

*, *** ********* *** *** **. *** *****'* ********* ** argument ** ** **** **** ******** ******* ***** *** ****** is *******. **** **** ******, ******* **** **** ****** ****, the ****** **** ******* ***** *** ******* *** ***** * few ***** *****, *** *** * *** ****, **** **** on, ***. ****'* ********* *** ******** ** ****, ********** *** an **********.

*** ***** *** **** ************* **** **** *** ********* *** this. *** ******* ** **** ******** ** ******, * ** sure **** ************ ***** ***, '**** ********, ********* *** * ****** ***. Fixed **, **, ** ******. **** '** **'

"** ********* *** ****** **********."

**, ********* *** ****************** *** ****** ** * ****. *** ********* *** *** yet ****** **** **** *** ********** ***** ** **** **** hacks.

Undisclosed Integrator #7

In reply to John Honovich | 09/23/15 01:18am

"** ********* *** ****** **********" ***'* *** ********* ******* **** you *** **.

Undisclosed #2

09/23/15 01:07am

**********: *** **** **** **** **** ** '***** ******' ***** name **** **** ****** ****** ** ***** ***** ******** ** make * **** ** '****** **** ***** *********', *** ***

Michael Miller

09/23/15 09:37am

******* ***** *** *** ***** ***/****** ************* ******** ********* ******* security ** **** ** ***** ** ***** *********?

Undisclosed #8

09/23/15 02:26am

* ***'* **** ***** *** ****,

*** * *** *** **** ******* **** ****.*** *** ****** :)

Undisclosed #8

09/23/15 03:09am

*** **** ***********

*** *** *** *** *** *.*.*

**** *** ****

Undisclosed #5

09/23/15 03:34am

#**************

Undisclosed #2

09/23/15 03:57am

***********

"** ***** *********** *** *** ******* ** ********* ***** *** app ******** ******* *** *** ********** ** ***** **** ***** unofficial *****, *** * ****** ********* **** ** ******* *** company ***** **** ** ****** *** ******* ********** ** ******** its *****.
********* ***** **** ******** **** ******* **** ********.***** ***** ***** ******** ********* ****** ***** ** *** ********* software.
**** ******* ***** *** **** **** **** ****** ** ******** Apple's ********* ******* **** ********** ******* ** ***** ******* ** the **** ******** ****** **** ********** ** ************* ********."

*********** **** ** *** *** *** ******* ***** **** **** story **** ****** *** ********* **** *** ** *** ********** few **** (** ******** ** *** ***** *********) *********** *** that ** *** ** *** ****** ******* ************ ************* - which ******* ** ** ********* ***** ** *** ******* **********.

Michael Miller

09/23/15 12:17pm

**** ******* ***** *** **** **** **** ****** ** ******** Apple's ********* ******* **** ********** ******* ** ***** ******* ** the **** ******** ****** **** ********** ** ************* ********."

* ****** ** *** ******* ********* *** "**** ******** ******" when **** *** ******* ***** **********?

Undisclosed #5

In reply to Michael Miller | 09/23/15 10:24am

* ****** ** *** ******* ********* *** "**** ******** ******" when **** *** ******* ***** **********?

* ********* **** **** **, ** ***** ****** **** ****. But * ***'* ***** ** **** ** ***** *** **** there:

*** *.*. ** *** ***** ******-***** ******* **********. **** ***-***** ****** ***** ***** **** **** ****** *** Yahoo ***** ******, *** ********* **** ***** ***** ********** ****** on *** ******, ** *** **** ********* **** ** **** continue ** ******** ** **** ****.

*** **** ** ****** **** ** *** *******, *** * don't ***** **'* * ****** *** ******* **** ***...

Undisclosed Manufacturer #10

09/23/15 04:30am

******** *** ****** *********** *** ********** ** *** * ** 2 ********* ***** ************ *** *** ******* - ***** *** language *** ********** **** *** ** *** **** ****** ** the *********** ****. *** ***, ***** ** *** **** ** unknown ****** *** * **** ***** ****. ****** *******: **** strict ******** ** ***** *******/******* ******* *********, **** *** ********** teams. *** ***** ****** **** **** **'* *** ******* *** not ****** *** *** ********* ****** *** ******* ** ***** uploaded ***, **** **** ** ******* ** ***** ****.

***** *** ******** ********* *******: ***, ** * ******** ********, I *** ****** *** **** ******** ** *** * *** concern ** ************ ******** ** ******** ** *** ******** *****. Usually, *** **** ******* ** *** ************* ******, *** *********** aspects **** ******** *** **** *****.

** ******* *** **** **** *** ******** *****, **** *** get * *** ***** *** ******* **** ***. ********* *** sent ******* *** **********. ***/********** ** ****** ****, *** ****** a ******* *******. **** ****, ** ****** **** ****, *** the **** ****. ********** **** *** **** *** *********** *********, developed **** ******* *** ***** ******* *** *******(!) ****** *********, full ** *****, **** **** ** ******* ******** *** ****. It's * ***** *** *** ** *********** ****** ** *** buffer ******** *******. ******* * ****** **** *** ****** *** a ****** ******** *****'* ***** *** ** *****, ***** ** much **** ***** *** ****.

* ***** *** **** ******* * ***** *** *** ** done * *** ** ***** ** * ****** ** * months. *'* *** **** **** **** ****** ** **** ** a ****** ** ******* ********* *** ***** *********. *'** ******* analyzed *****'* *** **** ***** ******* **** / *******, **** fall **** *** **** ********. **** ****** ******, **** *** player's ******** *** ** ****** *** (******** **** ****, ****, Samsung, *** *** ***** **** *******, *********, ***).

** **** * *** ****** *** **** ** ***** ** it's *****? ******** *** ***** ******** *** ************ ********** *** VMS *********? ***** ***** **** ** ***** *** ****** *********.

*** ******, ** *** ****** *** ***** ******** **** ****** cheap **** ***** ** ******** ******.

Undisclosed Integrator #11

09/23/15 09:12am

*** *** **** *** *** ***.. **** **** * *** D ********** ** ***** ***** *** ***** *** *** *** be **** ******* ** ********** *********!

Undisclosed Integrator #11

09/23/15 11:50am

*** ***** ** *****. *** ***** ** ********* ** ******* correctly. *** ***** ************ ** ******, ***** *** ****** *********. Especially ** *** ******** ********! ***** *** **** ******* ******** issues **** **** ****** ********. * **** ***** **** *** Im **** *** *** *********** **** ** ******* ***** **** for ***** ** ****.

Hal Bennick

09/23/15 02:49pm

*** *** **** ** **********, * **** *** *******.

*** ** * **** *** ***** **** **** ******* ** my **** **** * **** **** *******? * *** **, Hikvision ** *****, *** **'* ****** ***** **** ***'** ******* what *** *** ***: *** **-****** **********. **** *** *** solid *********** ** *** ****** (****** ********* **** *** ** employer ****), * **** ***'* *** *** *** ****** *** going ***.

***.*******.***/*****?*=***********

Bob Germain

In reply to Hal Bennick | 09/23/15 03:01pm

**. *******- ********* ******** **** **** ***** ******* *** **/*** listed.

**********- * **** *** *********.

Hal Bennick

In reply to Bob Germain | 09/23/15 03:42pm

** **** * ****** ******?

Undisclosed #5

In reply to Hal Bennick | 10/04/15 06:52am

**, * ***** **'* **** **** *** *** * ***** now.

Undisclosed Integrator #3

In reply to Hal Bennick | 09/23/15 03:11pm

*** ** *** ******* ******* ** ******** *********, *** **** for ***** * ******’* *** * ***** *** **** *** business **** *** ******* ***** **** *********. ** *** ***** stop ** *** **** ***** ********* *** *** ** **** with ** *** * *** ****. ** *** ** ** was * ******* ** ***** ***** *** *********. ********* *** the **** *** *** **** *** **** ** ***** ** how ***** ****** ******. ** **** *** ** ** ***** but *** **** *** ** *** ******** ******** (** **** licenses ** * ****** *** ******* ** **). *** ******* company ******** ** ***** *****. ***** ** ***** **** **** in * ********* *********. **** * ******* ******* * ***** ago, ************ **** ******** ** ***** *% ** ** ********, this **** ** **** ** ****** **% (*** ******* *******).

**** ******* ******* ** ** ********* *** ***** (***** ********* they’ll **** ** ****** *** ******* ********** ** ****** ***** and ********* *** ******* ******** ** ******* ***). *** ********** growth ** ** ***** ****** **** ********* **** ***** *** ignore ****** **** **.

Undisclosed Integrator #11

09/23/15 02:52pm

*** - ****** * *** **** ***** **** ** ** head *** *** **** ** *** ***! *** :*

*** *** *** *** *****..

Undisclosed Integrator #3

09/23/15 02:52pm

***** *** ****** *********** **** *******. **** *** *****, *****'* no ***** “******”.

*’* *** **** *** ********** *************, *** ** ****** ** ** ** *********** ****. *’* no ********** ********, *** * ****** ** *** *** *** ever ********* ** ******* ******** **** ***** **** ******.

Frantz Mathias

09/23/15 03:05pm

************* ** * ******* *******. *** *** **** **** ** the *********** ** *** **** **** ***** ** ******* *** cameras *** *** ***. *** **** *** *** *** *** the ** ******* *** *****. **** ********* ********* ** * little ******* *** ***** ** **** **** ** ** ******** but *** *** **** **** **** ** ********* ****** ** IP ***** ************ ******* ** *** **** ********** ** **** known ** *** **** ******** ** ***********.

*** '*** ** **** ** *** **** ****...** **** **** some **** *** ** ** ***** **** ** **** **** those ***** *** ********... ** *** *** ********** ** **** one *** ** *** *****. *** ******** ****** **** *** ... ** *** **** **** ** *** *** ******** ... Cybersecurity **** ** ********* ** ** *** **** ***** ** a ******* *** ***********. * ** *** **** ** ** at **** ***** ** ****.

Undisclosed #5

09/23/15 03:14pm

***** ** **** ******, * ***** * *** ** ****** don't ****!

***** ** **** ******, * ***** * *** ** ****** care * *** ***** *** ******.

Hal Bennick

In reply to Undisclosed #5 | 09/23/15 04:10pm

...*** ****'** ******* ********* ***** **.

Undisclosed Manufacturer #13

In reply to Undisclosed #5 | 09/23/15 05:02pm

** **** ****** ** ** ** *** **** ***** **** could **** **** ***** *** ***** ****** ***** *** *****. To ** **** ** ****** ****** *** **** *** ***** about **** *********. ********* ***** *** ** ******* ********* ** their ********/******* *** *** ***** *** ***** *** ***** ** a ******* ******* *** ** ********* ***** ** *** ******* Gov. **** ** *****......

** ** **** *** ****** ** *** ***** * ****. Well *** ***** ** **** ** **** ****** ******** *** YOU **** ********* *** ******** ** ******* ** **** ** today ** ********......

Andrew Bowman

In reply to Undisclosed Manufacturer #13 | 09/23/15 06:06pm

******'* ***** ****. * *** ** ***** ** **** ** one ******* **** * *** ********** ** #**.

Undisclosed #5

In reply to Andrew Bowman | 09/23/15 09:43pm

* *** ** ***** ** **** ** *** ******* **** I *** ********** ** #**.

* ***** ****** *****, *** ** ****** ******** ***, **** probably ***** *** ** ********* ****** *** ***** ******* *** were **** ******** ** ********. :)

Undisclosed Integrator #11

09/23/15 03:47pm

*** ** ******** ** *** ****** ** * "**** ******** connection" *** *** **** *** *** ***** ******* ** ***** so ******* ** ** ** ***** *** **** *** *******? Can *** *** ** ******** ********** **** ******* ********* ** China?

** *** **** *** ******* ****’*, ** ** *** ****’* it **** **** *** *** (*** **** ** ***** ****..)

** ** *** ****** * ***.

** *** **** ** ** ******* ***** ** ******** ***** development ********.

**’* *** ***** ************ **** *** ***, ******* ******* ******* on ***** ******* ***** ****** ****. **** *** ******* ********** owning **** ** ********* **** *****’* **** ****..

***** ****** *** ****..

Undisclosed #12

09/23/15 04:24pm

****. * ** ********* **** *** ***** ******** *** ******* some **** ** ******... ** ** *******, * ************* **** someone ***** ***** ******* **** ******* ** ***** **** ** exploit *** ************* **** ****** **** **** ** ********* *******.

**** ** **** *******?

** ***** ******* *** ****** ** * *** **** ** one *** ******** **, *** ***** ** **** ****. ****** this **** ** *** **** ******** **** ********* ******** **** China? ** *** ** ** **** *** ********** ******* *** cameras *** *** ***** ** **** * ************* ** ********** at **** **** ** *** ******? **** ** ** ******** are ***** ********* *** **** **** (** * ** **** others ** *** ********** ****). **** ******* *********, *************, *** government **** **** * **** ********* *** **** **** ** sophisticated ******. *** * **** ***** ** *** **** ****** system * ****** *** ** **** ** **** ** ************* processes ** ***** ******* ** ******** ** ********; ** ** used ** * **** **** ** ****** *** ******’* *******.

** *** ****** **** ***** *** **** *** ***** ******** was ******** ******* *****? **** ***** **** *** **** *****… or ** ***** **** **** *** **** ******* (*.*. *** allowing ** ** ** ********)

Undisclosed Manufacturer #10

In reply to Undisclosed #12 | 09/23/15 04:37pm

** * ******* *** ** *** **** ******** ****, **** HTTPS ******* (***** ******** **** **** **** *****).

Hal Bennick

In reply to Undisclosed Manufacturer #10 | 09/23/15 05:09pm

*********** (****) ************?

John Honovich

IPVM | In reply to Hal Bennick | 09/23/15 05:12pm

**, *** ** **** ******** *** ****** ****. *'** ****** moderation.

Hal Bennick

In reply to John Honovich | 09/23/15 05:23pm

*****, ****** *** ***** *** *** ****. *** *****.

Undisclosed Manufacturer #10

In reply to Hal Bennick | 09/23/15 05:22pm

****. ******** *********, *** ***** ******* *****. * **** ** implement ****** *** *** *******, **** *** *** **** *** that ******* **** **** *****. ***** ***** *** ****** ********.

Undisclosed #5

In reply to Undisclosed Manufacturer #10 | 09/23/15 06:02pm

**** ****.

John Honovich

IPVM | In reply to Undisclosed #12 | 09/23/15 04:54pm

"***** ******** *** ******* **** **** ** ******..."

******** ** ******** *** * **** ** ********* ** **** for ****** *** * ** **** *** ** ***** ** easily ****** / ******** *** ******.

"****** **** **** ** *** **** ******** **** ********* ******** from *****?"

* ** *** ***** **** ** **** ** ***********. *******, you ***** ******* **** ****** **** *** *******'* ************ ******** can **** ** ******** ** ** **** **** * ****** of ******** ***** ******** ********* ** *** **** * *****. This ***** ** ******.

****** **** **** ***** ****** *****.

Undisclosed #12

09/23/15 05:33pm

** ***** * ******* ****** **** ***** **** *** ******** vulnerabilities?

Undisclosed Manufacturer #14

In reply to Undisclosed #12 | 09/23/15 05:36pm

**** ************* ********* **** *** ***** "*******" *******. ******* ** usually * **** ** ** ******** * **** **** ******.

Birger Kollstrand

In reply to Undisclosed #12 | 09/24/15 05:41am

* *** ** ********* ****** *** ***** **. * **** did * ***** ****** *** ***** **** : ****://***.*******.***/********/******-******

*** ******* *** ** ******** ******** **** **** ** ******** in *** ** ******** ***** ***** ** *** ************* ** IP. **** **** **** *** ***** ******* *** ** ***** developed *** **** ** ************** ** **** ****** *** *************. Like ******** *****, ********* ****** ************* ***. **** ** ******** to **** * ****** *******.

*** **'* **** ** **** ****. ** *** **** **** the ************* **** *** ********* ***** ********* *********, **** ** get ****** ****** ** ******* *** ********* ************* *****. ** security ** * ********** ** **'* ***.

Login to read this IPVM report.

Why do I need to log in?

IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Less than 3 months ago, Dahua received DHS ICS-CERT's worst score of 10.0 for their backdoor. Now, Dahua has received another 10.0 score for a new...

Wireless Burglar Alarm Sensors Guide on Jul 21, 2017

Wireless sensors for burglar alarm sensors are an increasingly common option for the historical labor intensive wired alarm systems. However,...

PR Campaign Exploiting Manufacturer Cybersecurity on Jul 20, 2017

Manufacturers increasingly have a bulls-eye on their back. As cyber security solutions providers grow, they realize a great way to get publicity...

Hikvision USA Head of Cybersecurity Exits on Jul 18, 2017

Hikvision USA's Head of Cybersecurity has exited the company. In this note, we review the move, share Hikvision's feedback and examine the...

Wrongly Accused Critical Vulnerability for Vivotek on Jul 13, 2017

Vulnerabilities are an increasing branding and business problem for video surveillance manufacturers. However, sometimes vulnerabilities reported...

Hikvision Distributor Says Hikvision "Top Rated Yet Most Hated" on Jul 12, 2017

The CEO of 2M Solutions, a distributor selling Hikvision cameras under their own as well as Hikvision's brand has publicly declared Hikvision to be...

ONVIF Chairman Criticizes Low Cost Cameras (Also, He Works At Axis) on Jul 12, 2017

ONVIF Chairman Per Björkdahl has taken a strong public stance against low cost cameras that are 'much more vulnerable to attack' as he explains in...

Best Manufacturer Perks on Jul 07, 2017

A decade ago, the best manufacturer perk was likely a trip on the Pelco jet: But the Pelco jet is long, long, long gone. What types of perks...

Smartcard Copier Tested (13.56MHz) on Jul 05, 2017

Copying 125kHz cards is certainly easy, as our test results showed, but how about 13.56MHz smart cards? Are they more secure? IPVM focused on the...

Distributor Favorability Ranked (North America) on Jun 29, 2017

What North American security / surveillance distributors do integrators favor the most? The least? 150 integrators rated and commented on the...

Most Recent Industry Reports

Competing Against Tyco IS / JCI on Jul 28, 2017

Mega-integrator Tyco Integrated Security has gotten even bigger with the 2016 merger with Johnson Controls. 110+ integrators told us what they...

Startup Strops Completely Wireless Surveillance Camera Examined on Jul 28, 2017

European startup Strops has developed a surveillance camera that offers up to 6 days of runtime and cellular communications to create a fully...

Babel Street Global Threat Monitoring Tool Examined on Jul 27, 2017

Intelligence on potential threats and terrorist attacks can often be found online hours, or days, before an actual event, particularly in obscure...

Canon Sues Avigilon on Jul 27, 2017

Canon, owner of Axis and Milestone, has sued Avigilon for patent infringement in US court. This is a highly atypical move for Canon, pitting 3 of...

Anixter - Falling Video Prices on Jul 26, 2017

Falling video prices are such a concern that it has become a notable topic for Anixter's financial results and Anixter's executives. In this...

Bosch G-Series Intrusion Tested on Jul 26, 2017

Bosch is one of the biggest names in intrusion, and the company's G-Series panels are their most advanced commercial and high-security panels. But...

Healthy Skepticism for Deep Learning Is Prudent on Jul 26, 2017

The hype for deep learning in video surveillance is accelerating. Between the race to the bottom and dearth of a 'next big thing', certainly pent...

$28M Drone Detection Startup Examined (Dedrone) on Jul 25, 2017

Dedrone has received ~$28M in funding to build what they call an "automatic anti-drone solution", a system to detect drones, and then automatically...

Dahua Suffers Second Major Vulnerability, Silent [Finally Acknowledges] on Jul 25, 2017

Less than 3 months ago, Dahua received DHS ICS-CERT's worst score of 10.0 for their backdoor. Now, Dahua has received another 10.0 score for a new...

Hikvision H.265+ Bullet Tested (2035) on Jul 24, 2017

Continuing our tests of Hikvision's new low cost Value Plus line, we bought and tested the 3MP DS-2CD2035FWD-I, now including H.265+. We shot the...