Vivotek Trend Micro Cyber Security Camera App Tested

By: Ethan Ace, Published on Jul 22, 2019

Vivotek and Trend Micro are claiming five million blocked attacks on IP cameras, with their jointly developed app for Vivotek cameras.

This new app integrates Trend Micro's IoT security platform directly into Vivotek cameras and NVRs to block brute force password attempts and over 1,000 cyber attacks.

In this report, we look at the Vivotek/Trend Micro app and see how it performs, looking at:

  • What cyber security events does it monitor and prevent?
  • What attack details are provided?
  • How does it compare to other cameras' automatic account lockout?
  • How simple is app configuration?
  • What cameras does it integrate with?
  • How does it integrate to VMS?

******* *** ***** ***** are ******** **** ******* blocked ******* ** ** cameras, **** ***** ******* developed *** *** ******* cameras.

**** *** *** ********** Trend *****'* *** ******** platform ******** **** ******* cameras *** **** ** block ***** ***** ******** attempts *** **** *,*** cyber *******.

** **** ******, ** look ** *** *******/***** Micro *** *** *** how ** ********, ******* at:

  • **** ***** ******** ****** does ** ******* *** prevent?
  • **** ****** ******* *** provided?
  • *** **** ** ******* to ***** *******' ********* account *******?
  • *** ****** ** *** configuration?
  • **** ******* **** ** integrate ****?
  • *** **** ** ********* to ***?

[***************]

*******

***** ** *** *****, Vivotek's ***** ***** *** security *** *** **** positives:

  • ******* ********* ********:**** *** ****** ** two ***** ** *******, the ***** ***** *** blocked *** ****** **** 1,800 ********* ******** ** a ****** ********* ** the ********, ********* ********** by ******** ************ *********. Users ********** ************* ** cyber ******** *** ** not **** *** ** otherwise ******, *******, *** research ***** ******* **** this ********** ****** ** installing *** ***.
  • ******* ******:*** ***** ***** *** allows ***** ** ******* instant ****** ** ***** security ******, ***** *** camera's ***** ** ****** over *****, ***** ***** VMS, ** *******'* *** VAST2 ********. ***** ****** are *** ********* ********* for *** ** ** cameras.
  • ****** ************:********** *** *** *********** only ******** ********* ** to *** ****** *** turning ** **. ** other ************* ** ********* of ******** ** ********.

*******, ***** *** *** issues ***** ***** *** usefulness:

  • ** ****** *******:***** *** *********** ******* many ******* ****** *** course ** *** *******, there ** ** ******** information ** **** ***** attacks ******* **, **** a **** ** ******* and ****. ************* ** the ******** ****** ******** more ******** ********.
  • ** ********* ** ***** settings:******, ***** *** ** threshold ** ***** ******** for ***** *************, ** users **** ******* * separate ***** ** *** event *** **** ******, potentially ******** ** ****** per *** ** ******** camera *******.
  • ** ****** ******* *******:** *** *****, ****** trying ***** ********* ******** times *** *** ******* brute ***** *********, *** did ****** ******* ***** scripts ** ******* ****** UI *** *****. ******* says **** ***** ***** detection ** ******* *** 100 ***** ******** ** 20 *******, *** ** were ****** ** ******** this.

Less ******** ** ******* ********

**********, * **** *** installs *** ******** **** a ******* ** ****** security ********* ****** *** to *** ***** ******* on *** ****** ********, significantly ******** *** *****, though ** ***** ***** be ********* ** ********* internal / ****** ******* is ******.

Versus *********** ***** ******** ********

***** *******'* ***** ***** app ****** ******** ******** functionalities *** ******* ** other *******, ** **** not ***** ****** ******* lockout ** *** ******** attempts, *** ******** ** several *************' *******, ********* Dahua, *********, *** ****** (see:** ************ ***** ******** Compared).

*******, **** ** ***** competitive ****** ** *** notify ***** ** ***** attempts. *******, *** ******* or ********'* ** ******* is ****** ******* *** a *** ****** ** time. ** **** *****, users *** **** ** idea **** *** ******* has ****** ******, ** current ******* ** *** remain *********.

Pricing *** ************

*** ***** ***** *** is **** *** * period ** *-* *****, depending ** *** ****** model,******** ** ***** ************* page.

***** **** ******, ******* varies **** $** *** per ****** *** *** year ** $** *** camera *** ** ********* license. ******** *** **** than ** ******* *** discounted **% ($** *** camera *** *** ****, $28 *** ****** *********).

Vivotek / ***** ***** ********

*******'* ***** ***** *** is ***-********* ** ******* firmware *********** ******. ***** ** **** little ************* ********, **** on/off *** ******* ****** are **** ** *****-***** systems (******* *********, ********* in ** ******** ****** pack, ********* *****).

Basic Settings Simple To Configure

***** ***** ********** *** this *** *** ************* updated ** ******* *** can ** ******** ******* as *********.

***** ** * ****** summary ******* ****** ** each **** ** ****** as **** ** ** option ** ****** **** via .*** ****** *** further *************.

Summary Of Attacks On Camera  No Detailed Information In Web UI

Events ********

*** *** ******* ***** separate ******:

  • ***** *****:************ ***** ******** ** a **** **** * per ******. *** ****** will ** ****** *** 300 ******* ***** * detected ***** ***** *******.
  • ***** ******:*** ***** ******** ** Trend *****'******* **********(********* **** *,*** ******** attacks).
  • **********:** ***** ***** ******* outbound ****** ******** **** the ******, ** **** self-quarantine ** ***** *** issue ** ** ******** without ******* ****** ** other *******.

** *** *****, **** cyber ****** ****** **** triggered, **** ** ***** force ******** ****** (****** we *********) *** ** quarantine.

Attack ********** ********

***** ***** ******* ***** to *,*** ********* *******, ranging **** ****** ****** such ** ** ******* to ****** * ****** port (***, ***, ***.) to **** ******* *************** such ** **** *********, DNS *** **** *************** and ****, ****** ******* *************(.**** ******, **.*** ***** below):

***** ******* ** **** beyond **** **** ** cameras **** ******, ***** is ********* ******* ** bad ****** ****.

Limited ****** ******

*** **** ********** ** the *********** ******** ** Trend ***** ** **** it ** ***** *** requires * ****** ********** to ********* *** ***** nature ** *** ****** or *** ********* ******** to ** (** ***).

*** *******, **** ******* in *** ******* **** shown ** *******:

Limited Attack Information In Vivotek Software

******* ** **** ** 1133810 ** ***** *****'* signatures, ** *** **** that **** ** ** attempt ** ****** * closed ****:

Rule Definition Must Be Manually Looked Up

** **** ****, ***** the **** ** ******, no ******** *** ** warranted, *** *** **** complex *******, *************** ***** be ****** ** **** knowledgeable ** ** ******* may *** **** *** to *******.

Repeated ***** ******** ** *** ******* ***** ***** *********

** *** *****, **** of *** ******** ** log **** *** ****** using ********* *********** ********* a ***** ***** *****. We ********* ** ***** to *** ****** **** wrong *********** **********, ******** (using *** ***** ******), via ******* (********** ********** URLs **** ********* ***********), and ***** **** ****** brute ***** *****.

********* ** *******, ***** Force ****** ** ********* if *********** *** ********* at * **** ** 5 *** ****** *** 20 ******* (*** ********).

VAST ****** ******** ******

** ******** ** ****** reporting, ***** *** **** use *******'* **** ******** to **** ***** *********** on ************* ******, **** graphs ** ******* **** time, ******** ** ** address, ****, *** ******** event.

Vivotek VAST Client Event Search And Trends

VMS ***********

** ******** ** ****** events *** ***** *** VAST ********, ******* **** integrates ***** ***** ****** with ******* ******** ******, and **** ********* ******** should ** ********** ** an ******** ****** ****.

***** ***** ************. ***** Micro ****** ****** *** displayed ********* ** ***** camera ******, ***** ** "CyberAttack" ** "**********", **** the *********** ********** **** and **** ***********.

Vivotek Trend Micro Events Integrated To Genetec

Versions ******

******** *******: *****

***** ***** ***********:*.****

Comments (8)

*** **** *** ** have **** ******* *** many ***** **** ***** results *** ***** *********.  However, *** ******** * have ***** ****** ***** install ** **** ** physically ******** **** *** ADMIN *** *** **** often ***** ********* ** any ****** ** ********, is **** **** ** a ******* ******* ***** that ** **** ***** see **** *** ** or ** * ******* something?

**** **********. * ********** get *** ***** ** cameras *** ** *** LAN ** *** ********** separate **** *** ********.  Just ****** ** *** past *** "** ****" point **** **** **** introduced * ******** ****** that ****'* **** *** facility ****** **** *-* partitioned *****.

** ***** **** ****** against ****** *******. *** example, **** ** ** premise ********** *** *********** a ******, **** *** cable ** ***** ******.

******* ****** ****** ******* that **** ************* *** require ****** ***** ** reactivate **.

*** *** ******** *** network ** ****** **** that. **** ***** ******* is * **** **** for ***** *****.

**... ****** **** ** paper. ***** ** ******* the ****** ** *******.

****** *: ** *** have ****** ****** ***** to ******* *** **** on ********* **** *** would **** *** ****** feed/playback ** ***** ** excessive ****** **** (***** happen *** ******** *******) and *** ***** **** manual ************ ** *** the ****** **** ******.

****** *: ** *** have *** ****** ***** to ******* ** ***/******* MAC ********* (*** **** system *** *****) **** you **** *** ******** a ****** ** ***** the ******'* *** ******* and **** ***** ******** into *** ********* *******.

**** ******* ***** ********* to ** *******. **** being **** ****** * coupled **** ********** ******** tends ** ** *** best *** ** ** for **** *********. ***** your **** ****** ** ID * ****** ***** be * ***** ********* followed ** ****** ******* than ******.

**** ** * *****. 

**** **** **** **** a **** ** *** right *********?  ** ** it ****.  ***** * have ***** **** ** sold *** ** *** above ******** *** **** with *** *********** ** least **** **** ***** steps ** ******* ***** security ****** **** ****** Cisco *** * **** piece ** ****** **** handicapping * ***** ******** specialist.  *** ************ ** IP ******* ****** **** the ******** ******* ****** just ******** ******* *** forcing ****** ********* ** a ****** *** **** industry.

Attack ********** ********

*** ** ****** **** signature?

*** "***** *****'* ****** **********" **** ** ****. Nothing *********. 

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports

China DVR/NVR Backdoor Discovered, Huawei Refutes on Feb 07, 2020
A backdoor was found in Chinese-produced DVRs and NVRs that secretly allowed access to the recorders. While it was first attributed to Huawei...
Verkada Notification Outage on Dec 12, 2019
Verkada is suffering an event notification outage and analytic search failures. Inside, we examine what the issues are, what Verkada told IPVM...
ONVIF Exposure To "Devastating DDoS Attacks" Examined on Sep 06, 2019
ZDnet reported "Protocol used by 630,000 devices can be abused for devastating DDoS attacks", citing exposure of ONVIF devices. And after an...
Warning: Windows 7 Update Crashing NVRs on Aug 26, 2019
Windows 7 updates are causing VMS servers to fail to boot. After running the update, impacted systems do not boot as normal, instead display this...
Axis Suffers Outage, Provides Postmortem on Aug 15, 2019
This week, Axis suffered an outage impacting their website and cloud services. Inside this note, we examined what happened, what was impacted...
CheckMySystems Company Profile on Aug 14, 2019
CheckMySystems says that too many users respond, "I get an email when something is wrong" when talking about their video system maintenance plan,...
Dahua Wiretapping Vulnerability on Aug 02, 2019
IPVM has validated, with testing, and from Dahua, that many Dahua cameras have a wiretapping vulnerability. Even if the camera's audio has been...
LifeSafety Power NetLink Vulnerabilities And Problematic Response on May 20, 2019
'Power supplies' are not devices that many think about when considering vulnerabilities but as more and more devices go 'online', the risks for...
Security Fail: ASISNYC Auto Emails Passwords In Plain Text on May 14, 2019
ASIS NYC automatically emails a user with the password the user just entered, in plain text, when one registers for the site / event, as the...
Camera Configuration Manager Shootout - Avigilon, Axis, Bosch, Dahua, Hanwha, Hikvision on May 01, 2019
Which camera manufacturer has the best management tool? We tested 6 manufacturers - Avigilon, Axis, Bosch, Dahua, Hanwha, Hikvision to find...

Most Recent Industry Reports

USA's Feevr Thermal Temperature System Examined on Mar 31, 2020
This US company has burst on to the scene, brashly naming itself 'feevr' and branding itself as a "COVID 19 - AI BASED NON CONTACT THERMAL...
JCI Coronavirus Cuts on Mar 31, 2020
JCI has made coronavirus cuts, the company told employees in an email that IPVM has reviewed. Inside this note, we examine the cuts made, the...
Add Door Operators To Fight Coronavirus on Mar 31, 2020
IPVM recommends that integrators advocate and end-users consider adding door operators to fight the spread of coronavirus. This delivers...
Video Surveillance Business 101 on Mar 30, 2020
This report explains the fundamental elements of the video surveillance business for those new to the industry. This is part of our Video...
FDA Gives Guidance on 'Coronavirus' Thermal Fever Detection Systems on Mar 30, 2020
The US FDA has given IPVM guidance on the use of thermal fever detection systems being marketed for coronavirus, as an explosion of such devices...
Worsen: Integrators Hit Even Harder By Coronavirus on Mar 30, 2020
Integrator's problems have worsened over the past 2 weeks, according to new IPVM survey results. Inside this report, we share statistics and...
Pivot3 Mass Layoffs on Mar 27, 2020
Pivot3 has conducted mass layoffs, the culmination of grand hopes, a quarter of a billion dollars in VC funding, and multiple failures to gain...
Athena CEO Criticizes 'Deplorable' 'Nitpicking', IPVM Refutes on Mar 27, 2020
UPDATE: NBC News Report Cites IPVM On Coronavirus 'Fever Detection' Cameras Athena Security's CEO Lisa Falzone has strongly objected to IPVM's...
Hikvision Admits Sanctions Harming Its Financial Performance on Mar 27, 2020
While Hikvision initially downplayed being sanctioned for human rights abuses, the company is now admitting a significant impact in a new PRC...