Stopping Surveillance 'Videojacking'

Author: John Honovich, Published on Feb 16, 2011

A rising fear among security professionals is that surveillance video can be 'hijacked' and put on the Internet, resulting in embarassment or worse for the organization involved. A number of people are calling for more sophisticated and secure techniques to protect surveillance video. Unfortunately, such techniques do little to address the real risk and key threats to surveillance video.

A good example of the common but faulty recommendations offered can be found in a Feb 2011 Retail Solutions Online article where end to end encryption from the camera through the monitoring client is advocated. While this is technically possible (in at least some systems) and may be important for proving the validity of evidence in court, it does little to address the threat of videojacking.

**** ** *** ****** **** *** *********** ** ******* ************* are ****** *** ****** ****** - ****** ******** ********* ** incident (*.*., ********** ****** *****) ** ** ******* *** ****** ** * ******** ******* surveillance ***** (*.*., *************** ******** ****). ****** ******* ** **** *** ***** *** ** ******* and ***** ************ *****.

****** *** * **** **** ********* ****** ******* ******* ************ video **** *******. **** ******, *****'* ** **** ** ** a ********** ****** ** ******* ****** ** ****** *** *****. Just ** ****** *** ******** ** *** ******** ********** ****** and ***** ****** ** **** *****. ** ********, ******* ************ systems ** * *** ** **** *** ********** ****** **** compared ** **** **** *** *** ****** ** * ********* network (*** *** ******/********** **** ******* ** ******* * ***** ****?).

** **** ****** ** ******, ** *** * *********** *******:

  • ********** ******** ****** **** ****** ****** ** ***** ***** ***** is ************
  • ********** ****** ******* ** ***** ************ *******

*** ***** ****** ** ********* *** ******** ****** *** *** in * ******* ******** ****. ** ****, *** ****** ******, controlling ****** ** ************ ******* ** ***. **** ***** ***** their ************ ********** ******** ** *** ***. ***** **** ********* convenience *** ** ***** ********* ** *** ****** ******* **** in ** ****'* ********* ** * ********, ************ ****** ***** that ******* **** * ***** *** ******* ************ ***** ** a ******. 

******* ** ******** ****** ******* ******** *** ****** ** ********* to ****** ******** ***** *** ************* ****** *** ***** ***** inactivity. ******* ********* *** **** *****, ** ************, *** ***** users ***** ****** ********/********* ('*****' *** '*****' ** '*****' ** 'admin'). **** ***** ******** ********* ********* ***** ********** *** ****** that ******** ****** ****** *** ******.

******* ** ****** ******, ******** ************ **** *** ** ****. The **** ********* *** ** ****** **** ** ******* ******** access ******* ** *****, *** **********.

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports

Imperial Capital Security Investor Conference Review on Dec 08, 2017
Investment bank Imperial Capital holds an annual Security Investor Conference where 60+ companies present, including this year: IPVM bought a...
Broken Hikvision App Exposes Hypocrisy on Dec 06, 2017
While Hikvision talks about a commitment to cybersecurity, their broken app and their insecure 'solution' exposes not only their engineering...
'Catastrophic Problem' For Videofied App on Dec 06, 2017
Less than 2 months after closing their DIY division DragonFly, Videofied has been hit with a problem the company calls 'catastrophic'. Now the...
Hikvision UPnP Hacking Risk on Dec 04, 2017
Hikvision IP cameras are being hacked even for end users who had not set up port forwarding and believed their cameras were 'safe' behind...
Nest Secure Alarm System Tested on Nov 16, 2017
Google's expansion continues, this time into home security with their Nest subsidiary's move into alarm systems. They paid more than a...
Dahua Forbes 'Next Web Crisis' Vulnerability Dispute on Nov 16, 2017
The buffer overflow vulnerability in Dahua products is not in dispute, in fact we covered it when it was first published. What is in dispute is...
Vivotek Remote Stack Overflow Vulnerability on Nov 14, 2017
A stack overflow vulnerability in Vivotek cameras has been discovered by bashis, the security researcher who has also found vulnerabilities in...
WSJ Investigates Hikvision on Nov 13, 2017
The Wall Street Journal (WSJ) has released a detailed investigation into Hikvision's government ownership and cybersecurity problems, hitting the...
Milestone XProtect Essential+ Free VMS Tested on Nov 09, 2017
Milestone continues to expand its aggressive free and low-cost offerings, with this year, Milestone releasing XProtect Essential+, part of their...
Honeywell Indiegogo-Funded DIY Intrusion System Examined on Nov 02, 2017
Honeywell did $39 Billion dollars in revenue last year, but they are asking the public for $50,000 (.0001% of revenue) to fund their Indiegogo...

Most Recent Industry Reports

Hiring Camera Calculator Product Manager on Dec 12, 2017
We are working on making the Camera Calculator even better and hoping you can help us find the right person to join our team. IPVM is hiring a...
Testing $20 WyzeCam, The Money Losing Amazon Vet Startup on Dec 12, 2017
This startup is perfecting the old adage: We lose money on every sale, but make it up on volume But it is no joke. The company, Wyze Labs, is...
Xiongmai New Critical Vulnerability - Same Manufacturer Whose Products Drove Mirai Botnet Attacks on Dec 12, 2017
The Chinese manufacturer whose products were primarily responsible for the 2016 Mirai botnet attack has a new critical vulnerability, confirmed by...
Robot Vandalism on Dec 11, 2017
Vandalism of security systems is a common concern. It is so common that camera vandalism statistics show that designers routinely sacrifice camera...
Access Controller Software Guide on Dec 11, 2017
Properly configuring access controllers software is key to a professional access system. These devices have fundamental settings that must be...
2018 Video Surveillance Cameras Overview on Dec 11, 2017
This report concisely explains the developments for surveillance cameras offered in 2017 and the state of offerings going into 2018, including...
Imperial Capital Security Investor Conference Review on Dec 08, 2017
Investment bank Imperial Capital holds an annual Security Investor Conference where 60+ companies present, including this year: IPVM bought a...
Integrator GPS Vehicle Tracking Statistics and Success Examined on Dec 08, 2017
GPS vehicle tracking is a growing but somewhat controversial topic. On the plus side, tracking may increases productivity by providing greater...
Hikvision NA Biggest Sale of 2017 on Dec 07, 2017
Hikvision North America has been relatively disciplined the past 5 months, reducing the number of sales and the breadth of what is on sale. No...
Security Integrator IT Expertise Statistics on Dec 07, 2017
20 years ago, putting physical security systems on IP networks was just emerging. Today, almost every system is networked in some way, IP cameras...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact