Hacking (102)

Displaying 'Hacking' tags 1 - 25 of 102 in total

Save $50 Ends Tomorrow - April 2018 IP Networking Course

Save $50 ends this tomorrow, March 22nd. Register now and save. Lots of generic network training exists but none of it really explains how it relates to actual video surveillance systems or focuses on video surveillance problems. The IPVM courses...

By Brian Rhodes - about 20 hours ago

Hikvision HQ Contradicts Cybersecurity Director

Hikvision HQ has contradicted Hikvision USA's Director of Cybersecurity, Chuck Davis. Davis - Don't Put Cameras On The Internet Davis made a very good point in a recent SP&T interview: according to Davis: “Putting a camera directly on t...

By John Honovich - 13 days ago

New Whole Foods Installs Hackable Access Control (Upgraded)

Whole Foods has built a reputation for high quality. And their 2017 Amazon acquisition has increased that, plus added deep pockets for buying security equipment to protect their stores. But do they have the same high standards for access installs...

By Brian Rhodes - 28 days ago

Remote Network Access for Video Surveillance Guide

(PRO Only)

Remotely accessing surveillance systems is key in 2018, with more and more users relying on mobile apps as their main way of operating the system. However, remote access brings unique challenges, with system security, ease of access, and configura...

By IPVM Team - 28 days ago

IP Cameras Default Passwords Directory

Below is a directory of 50+ manufacturer's default passwords. Note: Change Default Passwords Leaving default passwords is dangerous and makes it easy for even inexperienced attackers to take control, brick or watch your video feed. Worse, since ...

By Ethan Ace - about 1 month ago

Simplisafe 'All New' Generation 3 Tested

(PRO Only)

Feared by the traditional alarm industry, Simplisafe has launched its 'all new' Generation 3 platform that they declare is "Stronger. Faster. Safer.": doubling-down on SimpliSafe’s core mission from day one: to make the best home protection pos...

By Brian Rhodes - about 1 month ago

Geovision Unprecedented Security Vulnerabilities And Backdoor

(PRO Only)

Cybersecurity vulnerabilities have plagued the video surveillance market. Now, Bashis, discover of the Dahua backdoor, has discovered 15 security vulnerabilities including a backdoor that widely impact GeoVision's cameras.  Inside, we test Bas...

By John Scanlan - about 1 month ago

US Congressional Hearing Features Hikvision

(PRO Only)

A US Congressional hearing asked questions about Hikvision's government ownership and cybersecurity issues, following the WSJ's investigations into Hikvision. Plus, Hikvision has issued a 'special bulletin' response to their dealers. In this not...

By John Honovich - about 2 months ago

Chinese Government Backdoor Spies on African Union Revealed

For 5 years, a Chinese government backdoor was used to spy on the African Union, according to a Le Monde investigative report. As is their tactic, China angrily dismissed the report as absurd. China had 'donated' the building and computer syste...

By John Honovich - about 2 months ago

Worst NVR / VMS Manufacturers 2018

(PRO Only)

These are the manufacturers who integrators reported the most significant problems with. 220+ integrators answered: In the past year, what VMS / NVR system have you had the worst experience with? What happened? A notable shift occurred be...

By IPVM Team - about 2 months ago

Hacked Hikvision IP Camera Map USA And Europe

The interactive map below shows a sample of hacked and vulnerable Hikvision IP cameras across the USA and Europe. Hover over a marker to see an image from that camera: [Note: this report and map was originally published on Dec 18th for the USA...

By Brian Karas - about 2 months ago

Hikvision Removed From US Army Base, Congressional Hearing Called

Hikvision has been removed from a US Army Base and a US congressional committee is planning a hearing on cybersecurity risks and specifically, Hikvision, reports the WSJ in a follow up to their (WSJ) Investigation Into Hikvision. This is a majo...

By IPVM Team - 2 months ago

Hikvision Declares 'Never Click On Links In Emails'

(PRO Only)

Hikvision is stepping up its cybersecurity efforts with a clear recommendation - to never click on links in emails: It is a surprising change since Hikvision has relied on links in their 'Special Bulletin' emails in responding to their own nume...

By IPVM Team - 2 months ago

Broken Hikvision App Exposes Hypocrisy

While Hikvision talks about a commitment to cybersecurity, their broken app and their insecure 'solution' exposes not only their engineering problems but their hypocrisy about cybersecurity. In this note, we examine the problems, angry Hikvision ...

By John Honovich - 3 months ago

Hikvision UPnP Hacking Risk

Hikvision IP cameras are being hacked even for end users who had not set up port forwarding and believed their cameras were 'safe' behind firewalls. The problem is UPnP and, more specifically, how Hikvision has insecurely used UPnP over the years...

By IPVM Team - 4 months ago

Dahua Forbes 'Next Web Crisis' Vulnerability Dispute

(PRO Only)

The buffer overflow vulnerability in Dahua products is not in dispute, in fact we covered it when it was first published. What is in dispute is how significant the vulnerability is, and the risks posed to users with unpatched devices. This was r...

By Brian Karas - 4 months ago

Vivotek Remote Stack Overflow Vulnerability

(PRO Only)

A stack overflow vulnerability in Vivotek cameras has been discovered by bashis, the security researcher who has also found vulnerabilities in cameras from Axis and Dahua, among other brands. The vulnerability is very easy to exploit, and opens up...

By Brian Karas - 4 months ago

WSJ Investigates Hikvision

(PRO Only)

The Wall Street Journal (WSJ) has released a detailed investigation into Hikvision's government ownership and cybersecurity problems, hitting the paper's front page.   Given the WSJ's global readership (42 million monthly readers, 2+ million pai...

By John Honovich - 4 months ago

Hikvision Admits Backdoor 'PR Issue'

(PRO Only)

Hikvision is admitting a problem. The backdoor itself is evidently not the problem for them. The problem, according to Hikvision, is a public relations issue, as their new Cybersecurity Director / spokesperson Chuck Davis explained: Undoubted...

By John Honovich - 5 months ago

Uniview Recorder Backdoor Examined

(PRO Only)

A Chinese research group has identified a vulnerability in Uniview recorders that allows backdoor access in a method similar to the Dahua backdoor. IPVM spoke with the researcher behind the discovery and Uniview to determine the severity and impa...

By Brian Karas - 5 months ago

Dahua Trying, Struggling To Respond To Hacking Attacks

(PRO Only)

Now, 2 weeks since large-scale hacking attacks commenced against Dahua vulnerable devices, we analyze Dahua's response. On the positive side, Dahua is clearly trying to respond, providing information and help to those impacted. However, Dahua is ...

By Brian Karas - 6 months ago

Hikvision USA Misleads Dealers On Backdoor

Hikvision USA emailed their dealers overnight with their 5th cyber security 'special bulletin' of the year. Misleading Unfortunately, they have misled their dealers by omitting critical information: Details of how to exploit the vulnerabi...

By John Honovich - 6 months ago

FLIR Thermal Camera Multiple Vulnerabilities, Patch Released

(PRO Only)

Multiple cyber security vulnerabilities exist in FLIR thermal cameras, which have not been fixed, despite being reported months ago. UPDATE- FLIR has released patches, which are covered in this report. In this note, we examine the vulnerabilities...

By Brian Karas - 6 months ago

Dahua Recorders Mass Hacked

Dahua recorders are being hacked and vandalized around the world, as confirmed by dozens of reports to IPVM since the attacks surged 5 days ago. Key points: If you have Dahua recorders and you port forwarded it (as they unfortunately recom...

By IPVM Team - 6 months ago

Displaying 'Hacking' tags 1 - 25 of 102 in total