Cybersecurity Startup VDOO Disclosing 10 Manufacturer Vulnerabilities Starting With Axis And Foscam

Author: IPVM Team, Published on Jun 20, 2018

Cybersecurity startup VDOO has uncovered significant vulnerabilities in Axis cameras along with many others not yet disclosed.

In this report, we examine the company and its funding, their vulnerability research, and the value/impact of the vulnerabilities.

************* ******* ******* ******************** *************** ** **** ************ **** **** ****** *** *** *********.

** **** ******, ** ******* *** ******* *** *** *******, their ************* ********, *** *** *****/****** ** *** ***************.

[***************]

Company ********

**** *** *********** ** ****** ** **** ***** *****,**** ******, ******* *****, *** *** **** ****** *********** ** ******* ********. ***** and ***** **-******* ******, ** ******** ******** ****, ***** *********** ** **** **** ******** ** ****. ******* ***** ********* **** **** ****** *** ***, ** well.

* ******* **** ** ****'* ******* ** ****** ******* ** their *******:

**** **** ** ****** *** ******** ********* (**) *** ********* Devices.

***********, **** ** ******** ** ****** *** ***** *** ****** manufacturers (*** ******) * ************ ******* (~$**,*** ** ******* * manufacturer's ********) ***** ********* ************* ****** ** *** ******* *** firmware.

**** **** **** ** ******* (****) * *********** **** ******** the ******* *** **** ******* ** ***** ****** ** * non-vulnerable ******. **** **** ** ********* * ******** ******* *** "post-deployment **********", ********** ** ******* *************** **** ******** ***** ********** a ******* ** ***-**********.

*******

**** ******** *********$** ******* ** ****************,**** ************ *******, *** ***** ********* *********.

**** ***** **** **** **** ** *** **** *******:

** ******* *** ************* ****’* *****-**-***-**** ******** ** ****** (***) security ********, ***** ******** ** *********, ***-**-*** ******* **** ******** devices, ******** *** ***** ******** ************ *** ************** ******** ***** on **** ********, *** ******** ******** ************* *** * **** range ** ********* *******.

Axis ************* *******

**** ********* ***** *************** ** *** ****' ******** **** (******: as ** */**/****, ******* **** **** ***** ** *** **********):

***-****-*****,***-****-*****,***-****-*****,***-****-*****,***-****-*****,***-****-*****,***-****-*****

***** *** ** * **** **** ***** **** *** ****** in **** ************** ****** ** *** ******. *** ******* ******** to ******* ** ****** ** *******, ********* ******** ***** *** advanced *********, ****** ******* ****** *************** **** *******'* ********* ************* ************ ************* *** ****** **** **** ****** *******.

*******, **** **** *********** *** ******, ** ** **** * matter ** **** *** ********** *** *** ****** **** **** advanced ****** ** ****** ******* ***** ******** ***** *******, ****** these *************** **** ******** *** ***** ** *****.

Impact ** *************

*** *************** ******* * ******** *********** ** ***** ** **** and **** ********* ** ****** ** **** ** ****** *** camera ******, ***** *** ******'* ******** (****** *********, **** ***********, video *******) ** *** *** ****** ** * ******** ** other ******* ** ****** *** *******.

**** ****** ************* ******, ***** ****** **** ** **** ************ access ** *** ******* ******** ***.

**** ***** ***** ************ ** ******** ** **** **** ***** overlay ** * ********** ******:

***** ******* ***** ********, *** ******* (** ******* - * small **** ****) ******* ** *** *** **** ****** ** the ***** ******:

Foscam *************

** ******** ** *** **** ***************, ******* ** ****, **** also ********** "***** ***************" ** ****** *********** **** ********* ** ******'* ******** ****. ********* ***** ***** vulnerabilities, ********* *** ***** *** ******* *** ******'* *** ******, inject ********, *** **** **** *** ******.

Botnet ****

**** ****** ** ***** ******* **** **** *** **** *** Foscam *************** *** *********** ** **** ** *** ******* ** a ****** *** **** *** ****** **** *******, ******* ******, or ***** ********. ** ******** ** *** ***** ******, ***** devices *** ***** ****** ********** ** *** **** ******** ******* but****** ************* *******.

VDOO *************** ** *************

** **** ***********, **** ** ************ ******** *********** **************:

  • ****** ******* ********** **** *****: ** *** *** *** ********* as "****"
  • ****** ***** ************: ****** ******** ******** *** ******** ***** *******
  • ****** ******** *****: **** ** ****** *********** ****** ******* ** analyze ******** *** **** ** *******

Axis ********

**** ********** ******** ** **** ********** **** ** ******** ******** *** ******* ********** ****** *** *************** ** *****, ***** ******** *** ********* Axis ****** ******.

More *********** ****** / ******** ******

**** *** **** *** ******, **** **** ** ********** **** vulnerabilities **** **** *************, **** *** *********** ********** ******* ***.

**** ***** **** * ******** ****** ** *** ************* ** the ***** ************ ********, ***** *** **** * ****** ********* focus *** **** *************. ************* ******** **** *** *** ****** significant ******** ********* ****** ** **** ** *** ************* **** have ******** **** ******** ***************. ****, ***** *** ******* **** they *** ****** *** ************, *** **** ** ******* **** are ******** *** *** **** *** *********** *** ******, **** may **** * ********* **** ******* ********.

Addendum: **** ******** ** *********

***** ** ******** *** ********** ********* ** *** ******* ******, we ******* **** * **** ** ********* *** **** *********. There *** * *** ********* ****** ** ******* **** ** are ***** ** ********** **** **** *** *************, *** ** will **** ***** ********* ** **** ** ** ******* ****.

****: ** ***** **** ***** *** ********** **** ************* *** they **** *** *** *********, ** **** ***** **** *** details *****.

  • *: **** ** *** ******* / ****** **** **** ******** follows *** * ************ ** ******* * *******? **** * manufacturer **** ***** ******* ** ***?
  • *: "**** **************-**************** ** ******** ** *** ******'* ******** ****, **** ** does *** ******* *** ****** ** *** ******** ****** ** to *** ****** ****. ** **** ******** ** ********* ******** to ***** *** ************ ** ******** ********* ********-********* ******** ****** and ***** ******** ** ******"
  • *: *** *** ********** *** ***** ****** ** ******** *** firmware/software ** **** ********?
  • *:*** ******** ******* ******* ******-******** ******** ************, ******** ** *** specific ***** ** *** ******, ***** *** ******** *** ******** components *** *** ******** **** *******.
  • *:*** *** ******* *************** ** ** ****** ******** **** **** been ****** ********** ** ***** **********, ** *** **** ****** across **** *** *********?
  • *:** *******, ****** *** ******** **’** **** **** ********* **** one ******’* ****** ** *** ** ****. **’** **** **** in ********* ******* ** **** ** ** **** “*********” *** products & ******* ** *** ****** ** ****** *** ********.
  • *: ** **** ******* ****** *** ***** *********** ****** ** grab *********?
  • *: *** ******** ** ** ** *** ** *** *** not ** ************* ***** ******** ** * ******* “***********” ********* effort. ** *** * ***** **** ** ******** ** (*) vendor ******** (**** ** ******) - ** *** *** ****** properly, ** **** ** (*) **** ******** - ** **** sure **** ******** *** ********* ******, **** ** ** ****** is *** **********; *** (*) ******* *********** ** *** ******** vendor ** **** ** “******* *******” ** ***** ******* ** better ********* ******** *** *** ******** ************ *** ****** *****.
  • *: *** ***** ***** ******** ********** *** *** ********* ********/******* vulnerabilities ***** ***?
  • *:** **** ******** ********* ******* *******, * ******* ***** ******** the *************** ** ********* ******* **** *** ****** *** ******** fields *** ************ **** *** ************ ******* ********. **** ***** these **** ** ******** ***** **** **** ****** ****** ** business ********** *****, ****** ** ********** “********” ** *** ******** and ******* *** ***** ***** ** ********.
  • *: *** **** *** ******* ****** ************ ******** **** ******* when *** ******* ****? **** *** **** *******/*********?
  • *:** **** ********* ** ******** **** *** *** ******* ************* we **** **** ******* **** **** ******* *** *********** **** they *** ** ****** ****** *****-******** *** ** *** **** the ********* ** ** “*******” ** “*********”. **** ********* **** they *** ***** ***** **** *** **** ** ***** ********* regarding ***** ********’ ********.
  • *:** ***** ************ ****** ********* ** **** ** *** **** service **** **** *** **** **** **** *** **** **** and ******? *'* *** *** ******* ************* *** *******, *** this ***** * ****** **** *********, ****** **** *** ****** are ***** *******
  • *:***** ** * ***** *********** ******* *** ************* ********** *******, where ** **** ******** ** **** **** ***** ************ ***** on *** ******** **** ******** ********** **. * ************* ****** in ***** ******** ********** ***** ************* ********* ** **** * fraction ** **** **** ** ********* *** *** *** ** product & ********, *** **** * **** ** ************* *** entire ******** ******* ** *** ************* ********. ********, **** * manufacturer ************* **** *** ********* ******** **** ********, ** * web ******* ******* ****** ** *** ************ ******* *** **********, the *********** ************* ********* ** *** ******** ****** *** *** process **** *** ** ****** **** **, ***** ** **** not ** **** ** ****** ** *** ******* **. ** the ************ ******* ** ******* *** *******, ** **** ******* this *********** *** **** *********, *** ************* ******* **** ** shared ********. ** *** *** ***** **** **** *********, ** provided **** **** ***** **** (**. ******** **** *********) *** the ************* ** *** ***** ***************, ** **** ** ********, verification **** ***** ********** ****** ******* *** *************** *** ******** they ******* ***** ********'* *****.

Comments (33)

Undisclosed #1

06/20/18 01:17pm

** ********* *** ***** ********* ***** ***** ******** **** ***** issue ***** **** * ****** ****** ** ***** ****** **** review ***. **** ****** *** ** **** **** ********** *** commitment **** ** ****** **** ** **** ********.

Avatar

Sean Nelson

Nelly Security | 06/20/18 02:10pm

****** **** * ***** ****. * ****** **** *** ****** to ** *** ** ** *** ************* *****. ** ** $50,000 *** ******* ** $**,*** *** *** ********? ** $**,*** for **** *******, **** ** ****** *****. $**,*** ********** ** have *** ******** ****** **** ***.

Avatar

Sean Patton

IPVM | In reply to Sean Nelson | 06/20/18 02:27pm

**** ** ** ******** **** ****, **** *** ******** **** an******************* ** **** ******, ********* ** *** **** ********* ********* of ****/******** *** ********. * ***** ******* ************* **** ****** and ******* ******* ***** (*****, ****** *******, *********, ***) ***** have ** *** ****.

*****: ********** ** *********, *** ***** ********** *** *starting ***** for pricing to manufacturers.

Avatar

Sean Nelson

Nelly Security | In reply to Sean Patton | 06/20/18 03:26pm

***, **** ** * **** ***** *** * ************. * hope **** **** ******** ** * ***** **** ** * great ****. ** **** ** ******** ****** **** **** **** manufacturers *** **** ** ** *** ***** ******** ********* **** an ******** ******* ******.

Avatar

Sean Patton

IPVM | In reply to Sean Nelson | 06/20/18 03:50pm

*** ** ** ***** ** *************, *****? *****...?

Avatar

John Bazyk

IPVMU Certified | 06/20/18 02:53pm

* **** **** *******.

Michael Miller

06/20/18 02:59pm

**’* **** *** ***** ******** ** ** *** ******** *** security *******. * **** *** ************ *** **** ** * resource. **** **.

bashis mcw

06/20/18 04:27pm

********* ****** ****** (***** ****) ** ****** ** **** *** quite ******* *** ********** * **** ***, **** *** ****!

***** **** *** ******** **** ***** *** ************, ***'* *** hope ************ *** **** ***.

Undisclosed #3

In reply to bashis mcw | 06/20/18 06:27pm

********* ****** ****** (***** ****) ** ******...

**,*** *** ******* *******?

Undisclosed Integrator #2

06/20/18 06:13pm

**** ***** *** ******** ** ***** ** *** **** ************* Scanner?

Avatar

John Scanlan

IPVM | IPVMU Certified | In reply to Undisclosed Integrator #2 | 06/20/18 07:40pm

***: ***, ** ****** **** *** *** *************** ***** ** next ****.

Undisclosed #4

06/20/18 07:59pm

*** *** **** ******* ******* **** ***** ** *****, *** cannot ******* ******* **** ***** ** *** *****.

Undisclosed #3

In reply to Undisclosed #4 | 06/20/18 08:04pm

*** *** **** ******* ******* **** ***** ** *****, *** cannot ******* ******* **** ***** ** *** *****.

********* **’** ****** ***********?

Undisclosed #4

In reply to Undisclosed #3 | 06/21/18 04:00am

**** ****** ****/***** **** *** ****** ******* ** ****** ***** version ** *** ******* ****.

*******, *** **** ** ****** **** ******** ********* ****** ** inspirational ***** ** ******* *** **** ** *****.

*** ***** **** **** ****** **** **** *** ***** ** the ******** ******.

********* ********-** ***** ** **** *** ***** *** ****** *** honoured *** ******* ** ***** *** ********** ***** ** ***********.

******** *** ******* **** ** **** *** ****** *** *** maximum ****** ** *** ** *** ********'* **** ********, ** lies **** *** *******/****.

********* ********** ** ****. ****** *** ****** ***********, ****.

** ** ********** ** *** *** **** **** ******** ***** take ** **** ***** ** ******** ******** ** *** *************** born **** ***** ***********.

********* ********** *** ******** *********, ******** ********** *** ************ ** take * **** **** ** ***** *****-*** *********.

*** ***** ** ****.

Undisclosed Integrator #9

In reply to Undisclosed #4 | 06/25/18 07:37am

*** **** ** ************** *******.

Undisclosed Integrator #9

In reply to Undisclosed #3 | 06/25/18 07:39am

** *** ****** **** *** ****.

Terrence Harless

06/20/18 08:30pm

**** *******, ** ***** ************ ****** ********* ** **** ** for **** ******* **** **** *** **** **** **** *** with **** *** ******? *'* *** *** ******* ************* *** cameras, *** **** ***** * ****** **** *********, ****** **** and ****** *** ***** *******.

bashis mcw

In reply to Terrence Harless | 06/20/18 08:36pm

**** ****** ***** **** ** ***, ** *** **** ** pay >$**,*** ** **** **** ********** ********, **** **** *** usually *** ****?

Avatar

Sean Nelson

Nelly Security | In reply to Terrence Harless | 06/20/18 08:41pm

** ***** ** **** **** *** ***** **** *** *********.

Avatar

Sean Patton

IPVM | In reply to Terrence Harless | 06/20/18 08:42pm

****** *** *** ********, * ******* *** ** **** *** a ********.

** *******, * ****** ******* **** ***** ******* * ******* as ***-**********, *** **** ********** ********, ******* *** ******* ** the ************, ********* **** ******?

John Honovich

IPVM | In reply to Sean Patton | 06/20/18 08:45pm

***** ******* * ******* ** ***-**********, *** **** ********** ********, without *** ******* ** *** ************, ********* **** ******?

*** ******* ** *** ********. ***'* *** * *** *********. I **** ** **** *** *** "*** **** ** **." I *** ** *****. * ***** ***** **** ***** **** and **** ** ***** ** ******** ***************. *** ******** **** is: ** * ****** ** ****, **** **** ******** ***** vulnerabilities?

Avatar

Sean Patton

IPVM | In reply to John Honovich | 06/20/18 08:51pm

* ***, *** *** **** ******* ** *** ***-********* *****. I ******* ***** ***** ** ******** ** *** ************ *** trying ** **** * *** ******* ** * ******** ***** to ******* *** ************* ****.

****, *** ****** ******** ********** ****** ******** ***** ************* ******.

Terrence Harless

In reply to Sean Patton | 06/20/18 08:56pm

**** ** ***** * *** ****** ****, ** **** **** not **** * *********** **** **** *** ********* ****. *** example ******** ****, ** **** **** **** *** **** *************, will **** *** **** ********* ** **** *** *** **** ISN'T ***** ******. ** **'* *** ******, ***** ** ** a ****** ********* ***** **. **** ** $**,*** ** ** will ***** ** ******* ***** **** *************.

Avatar

Sean Nelson

Nelly Security | In reply to Terrence Harless | 06/20/18 09:02pm

** **** *** *** ********* **** *** **** $***, **** thats ****** ****** *** * **** ******* **** ********* ***** business **** ****. **** ****** ***** *** ****** ** ** the *************.

* ***** ****** **** *** ****** ********* ********** ***** *** to ****** ********* *** ********* ******** ***** ** *****.

* ***** ********** ** **** ***** *** ******* ** *** manufacturer *** *** ******* ** *** ************* ** * ********** amount ** ****, *** ****** ****** ********. *** **** **** I ***** **** ***** **** ** ****** *** ************ ** that **** ******* *** *** ***** ** ****** ******** ******* that **** *** *** ****.

Avatar

Sean Patton

IPVM | In reply to Terrence Harless | 06/20/18 09:04pm

**** ***** *****, ****** *** ********** **** *****.

* ***** ********* ** * ****** *** ** *** **, unless **** **** *********** ********** *************** *** ***-******** ** **** point.

Undisclosed Manufacturer #8

In reply to Sean Patton | 06/21/18 12:35pm

** * ************ ***** ***** ***** ***** ********, *** $*** is ***** **** *****. ** ***** * ********** ** ***** security. ****, ****/** * ************* ** *****, * ***** ****** VDOO ***** **** **** * ***** ** *** **** ** patch ****** **** **********. ** **** **** *** ******** *** issue *** **********, *** *** ************ ***** ***** ********** ** cyber.

************* ***** ***** $ ** *********** *******...

Undisclosed Manufacturer #6

06/20/18 11:47pm

* ***** ***** **** ***** **** **** ******** ********* ** manufacturers **** ** ********* ** ******** ***** * ************* ****** of **** ** ******** **** *** ******* ******** *** *** disclose *** ***** ****** *** ***-******* ******, ******** **** **** before *******.

************* ******* ** ********* ****** ** ***** * ***** **** to **** ********.

Rodney Thayer

06/21/18 01:28am

**** ** **** *** ********** **** ******* (***** *** ****** have ****** *** ** *** ***'* **** **** ***** *****.)

Avatar

Sean Patton

IPVM | In reply to Rodney Thayer | 06/21/18 01:11pm

****** ******, * **** ** ****** *** **** ** **** that, *** **** ** ******** *** ** *** **** ***** details **** ******** ** *** ***(*).

Avatar

Sean Patton

IPVM | In reply to Rodney Thayer | 06/28/18 02:33am

**** ******** **** ********** ** *** ****** **** **** *** CVE ********* ******* **** **** *****, ** **** ****** ***** to ****** ****.

Undisclosed Integrator #7

06/21/18 11:43am

* ***** **** *****/***** **** * ***** "******" *** ******** devices....

Avatar

Sean Patton

IPVM | 06/24/18 06:53pm

** ******** ******* *** **** ***** ** *** ******.

***** ** ******** *** ********** ********* ** *** ******* ******, we ******* **** * **** ** ********* *** **** *********. There *** * *** ********* ****** ** ******* **** ** are ***** ** ********** **** **** *** *************, *** ** will **** ***** ********* ** **** ** ** ******* ****.

  • *: **** ** *** ******* / ****** **** **** ******** follows *** * ************ ** ******* * *******? **** * manufacturer **** ***** ******* ** ***?
  • *: "**** **************-**************** ** ******** ** *** ******'* ******** ****, **** ** does *** ******* *** ****** ** *** ******** ****** ** to *** ****** ****. ** **** ******** ** ********* ******** to ***** *** ************ ** ******** ********* ********-********* ******** ****** and ***** ******** ** ******"
  • *: *** *** ********** *** ***** ****** ** ******** *** firmware/software ** **** ********?
  • *:*** ******** ******* ******* ******-******** ******** ************, ******** ** *** specific ***** ** *** ******, ***** *** ******** *** ******** components *** *** ******** **** *******.
  • *:*** *** ******* *************** ** ** ****** ******** **** **** been ****** ********** ** ***** **********, ** *** **** ****** across **** *** *********?
  • *:** *******, ****** *** ******** **’** **** **** ********* **** one ******’* ****** ** *** ** ****. **’** **** **** in ********* ******* ** **** ** ** **** “*********” *** products & ******* ** *** ****** ** ****** *** ********.
  • *: ** **** ******* ****** *** ***** *********** ****** ** grab *********?
  • *: *** ******** ** ** ** *** ** *** *** not ** ************* ***** ******** ** * ******* “***********” ********* effort. ** *** * ***** **** ** ******** ** (*) vendor ******** (**** ** ******) - ** *** *** ****** properly, ** **** ** (*) **** ******** - ** **** sure **** ******** *** ********* ******, **** ** ** ****** is *** **********; *** (*) ******* *********** ** *** ******** vendor ** **** ** “******* *******” ** ***** ******* ** better ********* ******** *** *** ******** ************ *** ****** *****.
  • *: *** ***** ***** ******** ********** *** *** ********* ********/******* vulnerabilities ***** ***?
  • *:** **** ******** ********* ******* *******, * ******* ***** ******** the *************** ** ********* ******* **** *** ****** *** ******** fields *** ************ **** *** ************ ******* ********. **** ***** these **** ** ******** ***** **** **** ****** ****** ** business ********** *****, ****** ** ********** “********” ** *** ******** and ******* *** ***** ***** ** ********.
  • *: *** **** *** ******* ****** ************ ******** **** ******* when *** ******* ****? **** *** **** *******/*********?
  • *:** **** ********* ** ******** **** *** *** ******* ************* we **** **** ******* **** **** ******* *** *********** **** they *** ** ****** ****** *****-******** *** ** *** **** the ********* ** ** “*******” ** “*********”. **** ********* **** they *** ***** ***** **** *** **** ** ***** ********* regarding ***** ********’ ********.
  • *:** ***** ************ ****** ********* ** **** ** *** **** service **** **** *** **** **** **** *** **** **** and ******? *'* *** *** ******* ************* *** *******, *** this ***** * ****** **** *********, ****** **** *** ****** are ***** *******
  • *:***** ** * ***** *********** ******* *** ************* ********** *******, where ** **** ******** ** **** **** ***** ************ ***** on *** ******** **** ******** ********** **. * ************* ****** in ***** ******** ********** ***** ************* ********* ** **** * fraction ** **** **** ** ********* *** *** *** ** product & ********, *** **** * **** ** ************* *** entire ******** ******* ** *** ************* ********. ********, **** * manufacturer ************* **** *** ********* ******** **** ********, ** * web ******* ******* ****** ** *** ************ ******* *** **********, the *********** ************* ********* ** *** ******** ****** *** *** process **** *** ** ****** **** **, ***** ** **** not ** **** ** ****** ** *** ******* **. ** the ************ ******* ** ******* *** *******, ** **** ******* this *********** *** **** *********, *** ************* ******* **** ** shared ********. ** *** *** ***** **** **** *********, ** provided **** **** ***** **** (**. ******** **** *********) *** the ************* ** *** ***** ***************, ** **** ** ********, verification **** ***** ********** ****** ******* *** *************** *** ******** they ******* ***** ********'* *****.

John Honovich

IPVM | 08/07/18 05:24pm

******:******* **** *** * ** ***** ************* ***** ** ********** here.

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports

'Sticker' Surveillance Camera Developed (CSEM Witness) on Nov 16, 2018
The Swiss Center for Electronics and Microtechnology (CSEM) has announced what it calls the: world’s first fully autonomous camera that can be...
ISC East 2018 Mini-Show Final Report on Nov 16, 2018
This is our second (updated) and final show report from ISC East. ISC East, by its own admission, is not a national or international show, billed...
Haven Targets School Security with Lockdown Lineup on Nov 08, 2018
Haven, a US startup founded in 2014 as a residential-focused company, has now raised funding and is offering a lineup of commercial grade locks for...
Kogniz Silicon Valley AI Startup Profile on Nov 07, 2018
Kogniz is a Silicon Valley company that aims to bring AI analytics to security and surveillance, centering on their own smart cameras: We spoke...
Directory of Access Control and Intrusion Startups on Oct 30, 2018
This directory catalogs access control and intrusion detection startups IPVM has found noteworthy. The directory is provided for your review to...
Exacq Co-Founders Return, Start Qumulex on Oct 24, 2018
Exacq co-founders Dan Rittman, Tom Buckley, and David Underwood are back, starting up Qumulex. In 2000, they sold Integral to Andover...
Startup SafePass Profile on Oct 19, 2018
A major problem with visitor management is that the systems mostly require adhesive printed paper labels and paper logs, creating waste and an...
Anti-Tailgating Startup: Spyfloor on Oct 03, 2018
A Canadian startup, Spyfloor, is using a different approach to warn against tailgating, a common access control problem. By counting feet,...
Bosch / SAST / OSSA Aims To Be Industry Standard IP Camera OS and App Store on Sep 28, 2018
Bosch is betting tens of millions of dollars that their spinout SAST will become the defacto standard OS of IP cameras with an industry-wide app...
ASIS GSX 2018 Show Report on Sep 25, 2018
In the first major US show since the US government ban of Dahua and Hikvision was passed into law, the mega Chinese companies were in retreat and...

Most Recent Industry Reports

'Sticker' Surveillance Camera Developed (CSEM Witness) on Nov 16, 2018
The Swiss Center for Electronics and Microtechnology (CSEM) has announced what it calls the: world’s first fully autonomous camera that can be...
ISC East 2018 Mini-Show Final Report on Nov 16, 2018
This is our second (updated) and final show report from ISC East. ISC East, by its own admission, is not a national or international show, billed...
Facial Detection Tested on Nov 16, 2018
Facial detection and recognition are increasingly offered by video surveillance manufacturers. Facial detection detects faces in an image/video...
Throughtek P2P/Cloud Solution Profile on Nov 15, 2018
Many IoT manufacturers either do not have the capabilities or the interest to develop their own cloud management software for their devices....
ASIS Offering Custom Research For Manufacturers on Nov 15, 2018
Manufacturers often want to know what industry people think about trends and, in particular, the segments and product they offer.  ASIS and its...
Hikvision Silent on "Bad Architectural Practices" Cybersecurity Report on Nov 14, 2018
A 'significant vulnerability was found in Hikvision cameras' by VDOO, a startup cybersecurity specialist. Hikvision has fixed the specific...
French Government Threatens School with $1.7M Fine For “Excessive Video Surveillance” on Nov 14, 2018
The French government has notified a high-profile Paris coding academy that it risks a fine of up to 1.5 million euros (about $1.7m) if it...
Integrator Credit Card Alternative Divvy on Nov 13, 2018
Most security integrators are small businesses but large enough that they have various employees that need to be able to expense various charges as...
Directory of Video Intercoms on Nov 13, 2018
Video Intercoms, also known as Video Door-Phones or Video Entry Systems, have been growing in the past decade as more and more IP camera...
Beware Amazon Go Store Hype (Tested) on Nov 13, 2018
IPVM's trip to and testing of Amazon Go's San Francisco store shows a number of significant operational and economic issues that undermine the...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact