Hacking (67)

Displaying 'Hacking' tags 1 - 25 of 67 in total

PR Campaign Exploiting Manufacturer Cybersecurity

(PRO Only)

Manufacturers increasingly have a bulls-eye on their back. As cyber security solutions providers grow, they realize a great way to get publicity for themselves is to maximize coverage of exploits they discover.  In this report, we provide a behi...

By Brian Karas - about 3 hours ago

Hikvision USA Head of Cybersecurity Exits

(PRO Only)

Hikvision USA's Head of Cybersecurity has exited the company. In this note, we review the move, share Hikvision's feedback and examine the company's efforts to improve their cybersecurity following numerous vulnerabilities and problems (e.g., 1, ...

By Brian Karas - 2 days ago

Wrongly Accused Critical Vulnerability for Vivotek

(PRO Only)

Vulnerabilities are an increasing branding and business problem for video surveillance manufacturers. However, sometimes vulnerabilities reported are not as critical as the reports claim.  Vivotek was recently faced with one but the vulnerability...

By Brian Karas - 7 days ago

Smartcard Copier Tested (13.56MHz)

(PRO Only)

Copying 125kHz cards is certainly easy, as our test results showed, but how about 13.56MHz smart cards? Are they more secure? IPVM focused on the risk of Hacking Your Access Control With This $30 HID 125kHz Card Copier, but are more advanced 13.5...

By Brian Rhodes - 15 days ago

No Hack, Still Liable, Court Finds ADT

(PRO Only)

Recently, ADT has been in the news for a $16 million settlement for a cyber security vulnerability class action suit. One of the most important and interesting points behind this settlement is a court order that found ADT could be found liable ev...

By IPVM Team - about 1 month ago

How To Hack Your Company's Hikvision Recorder

(PRO Only)

Here's how easy it is to hack your company's Hikvision recorder: It does not matter how hard or secret the admin password is. Hikvision will happily help you. Hikvision will let anyone do it with no verification. You cannot disable this 'fea...

By IPVM Team - about 2 months ago

Anti-Hack Access Card Shields Tested

(PRO Only)

Keeping your access control card information secure is becoming a big priority, especially since cheaper copiers can hack details easily. Multiple products claim they can keep those RFID details hidden, so we bought several examples to put them to...

By Brian Rhodes - about 2 months ago

Hackable 125kHz Access Control Migration Guide

(PRO Only)

Despite being one of the most popular credentials, 125 kHz credentials are easily copied and insecure as we showed in our test results, video embedded below: However, changing to more secure credentials is not always a clear path, and doing it ...

By Brian Rhodes - 2 months ago

Cisco: Hikvision Hired Us

(PRO Only)

The day after Hikvision's backdoor was confirmed by the US Department of Homeland Security, Hikvision issued a press release about a 'cybersecurity collaboration' with Cisco inside China, with Hikvision USA touting that Hikvision was 'adding cyb...

By John Honovich - 2 months ago

Hikvision Blaming Backdoor On Others, Cannot Hide From DHS

Numerous Hikvision employees are blaming their backdoor on others but Hikvision cannot hide from the US Department of Homeland Security. Blaming Others Here is an example of a Hikvision employee's response to the backdoor: No need To worry, t...

By John Honovich - 2 months ago

Hikvision Backdoor Confirmed

The US Department of Homeland Security's Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) has issued an advisory for vulnerabilities to Hikvision cameras, crediting and confirming the work of researcher Montecrypto who originall...

By Brian Karas - 2 months ago

Hack Your Access Control With This $30 HID 125kHz Card Copier

You might have heard the stories or seen the YouTube videos of random people hacking electronic access control systems. The tools that claim to do this are available widely, including at eBay for just $30. We bought one of these cheap gadgets, s...

By Brian Rhodes - 3 months ago

Last Day - IP Networking Course May 2017

Today is the last day to register for the May IP Networking Course. This is the only networking course designed specifically for video surveillance professionals plus it includes live training, personal help and certification. What the IPVM IP N...

By Brian Rhodes - 3 months ago

Chinese 'Attacking Us From Every Direction', Says US FBI

"Chinese eating our lunch. Attacking us from every direction" said the US FBI's Deputy Director Andrew McCabe at the ASIS 2017 CSO Summit. .@FBI Deputy Director Andrew MCabe provides a State of FBI at #csosummit17 "we focus on facts and law". p...

By John Honovich - 3 months ago

Dahua Manager: Lots of Backdoors Beyond Dahua or Hikvision

(PRO Only)

A Dahua technical manager has fired back at criticisms of Dahua's backdoor, posting publicly what many at Dahua have privately been saying for the past few weeks that their backdoor is no big deal because lots of companies have backdoors and that ...

By John Honovich - 4 months ago

Uniview Weak Local / Strong Remote Password Policy Tested

(PRO Only)

With the continuing onslaught of cyber-security breaches (see Dahua backdoor recently discovered, Hikvision defaulted devices getting hacked) making devices accessible via the public Internet is risky, especially when many users fail to change def...

By Ethan Ace - 4 months ago

Genetec Comments on Washington DC MPD Hack

This January, the Washington DC police video surveillance system was hacked with ransomware, impacting 123 of 187 cameras. Last month, IPVM confirmed that the police system was using Genetec recorders, Axis cameras and Cradlepoint equipment. Now...

By Brian Karas - 4 months ago

Hikvision Privilege-Escalating Security Vulnerability

(PRO Only)

Hikvision has disclosed a new security vulnerability that affects 200+ of their IP cameras over the past few years. In this note, we examine the vulnerability, share results of the new firmware's changes and its potential impact.

By IPVM Team - 4 months ago

FLIR Responds to Dahua Backdoor

(PRO Only)

FLIR is the first Dahua OEM partner to issue a statement following Dahua's backdoor disclosure: Certain FLIR and Lorex branded products that are produced by Dahua may be affected by this vulnerability. To reduce concern / problems, they hi...

By John Honovich - 4 months ago

Hikvision Firmware Decrypted

(PRO Only)

A developer has decrypted Hikvision's firmware, allowing examination of Hikvision's device source code and contents. In this report, we overview the tool, showing you how it works, sharing a Hikvision's camera decrypted firmware and overviewing s...

By Brian Karas - 4 months ago

Who Is Hacking Hikvision Devices?

(PRO Only)

Someone or organization is mass hacking Hikvision devices, actively and systematically running a script / program across the Internet that looks for Hikvision devices, finds them, and, at least, locks the user out. The most significant misconcept...

By Brian Karas - 5 months ago

Dahua Backdoor Uncovered

(PRO Only)

A major cyber security vulnerability across many Dahua products has been discovered by an independent researcher, reported on IPVM, verified by IPVM and confirmed by Dahua. Upgrade Immediately A 'number' of Dahua HDCVI and IP cameras and recor...

By IPVM Team - 5 months ago

Hikvision Defaulted Devices Getting Hacked

Hikvision devices with default passwords and remote network access enabled (via DDNS, public IPs, etc.) have experienced wide spread hacking over the past month locking out users, IPVM has confirmed. This is new, and from what has been reported b...

By Brian Karas - 5 months ago

Displaying 'Hacking' tags 1 - 25 of 67 in total