Hacking (60)

Displaying 'Hacking' tags 1 - 25 of 60 in total

Anti-Hack Access Card Shields Tested

(PRO Only)

Keeping your access control card information secure is becoming a big priority, especially since cheaper copiers can hack details easily. Multiple products claim they can keep those RFID details hidden, so we bought several examples to put them to...

By Brian Rhodes - 1 day ago

Hackable 125kHz Access Control Migration Guide

(PRO Only)

Despite being one of the most popular credentials, 125 kHz credentials are easily copied and insecure as we showed in our test results, video embedded below: However, changing to more secure credentials is not always a clear path, and doing it ...

By Brian Rhodes - 9 days ago

Cisco: Hikvision Hired Us

(PRO Only)

The day after Hikvision's backdoor was confirmed by the US Department of Homeland Security, Hikvision issued a press release about a 'cybersecurity collaboration' with Cisco inside China, with Hikvision USA touting that Hikvision was 'adding cyb...

By John Honovich - 12 days ago

Hikvision Blaming Backdoor On Others, Cannot Hide From DHS

Numerous Hikvision employees are blaming their backdoor on others but Hikvision cannot hide from the US Department of Homeland Security. Blaming Others Here is an example of a Hikvision employee's response to the backdoor: No need To worry, t...

By John Honovich - 17 days ago

Hikvision Backdoor Confirmed

The US Department of Homeland Security's Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) has issued an advisory for vulnerabilities to Hikvision cameras, crediting and confirming the work of researcher Montecrypto who originall...

By Brian Karas - 19 days ago

Hack Your Access Control With This $30 HID 125kHz Card Copier

You might have heard the stories or seen the YouTube videos of random people hacking electronic access control systems. The tools that claim to do this are available widely, including at eBay for just $30. We bought one of these cheap gadgets, s...

By Brian Rhodes - 26 days ago

Last Day - IP Networking Course May 2017

Today is the last day to register for the May IP Networking Course. This is the only networking course designed specifically for video surveillance professionals plus it includes live training, personal help and certification. What the IPVM IP N...

By Brian Rhodes - about 1 month ago

Chinese 'Attacking Us From Every Direction', Says US FBI

"Chinese eating our lunch. Attacking us from every direction" said the US FBI's Deputy Director Andrew McCabe at the ASIS 2017 CSO Summit. .@FBI Deputy Director Andrew MCabe provides a State of FBI at #csosummit17 "we focus on facts and law". p...

By John Honovich - about 1 month ago

Dahua Manager: Lots of Backdoors Beyond Dahua or Hikvision

(PRO Only)

A Dahua technical manager has fired back at criticisms of Dahua's backdoor, posting publicly what many at Dahua have privately been saying for the past few weeks that their backdoor is no big deal because lots of companies have backdoors and that ...

By John Honovich - about 2 months ago

Uniview Weak Local / Strong Remote Password Policy Tested

(PRO Only)

With the continuing onslaught of cyber-security breaches (see Dahua backdoor recently discovered, Hikvision defaulted devices getting hacked) making devices accessible via the public Internet is risky, especially when many users fail to change def...

By Ethan Ace - 2 months ago

Genetec Comments on Washington DC MPD Hack

This January, the Washington DC police video surveillance system was hacked with ransomware, impacting 123 of 187 cameras. Last month, IPVM confirmed that the police system was using Genetec recorders, Axis cameras and Cradlepoint equipment. Now...

By Brian Karas - 3 months ago

Hikvision Privilege-Escalating Security Vulnerability

(PRO Only)

Hikvision has disclosed a new security vulnerability that affects 200+ of their IP cameras over the past few years. In this note, we examine the vulnerability, share results of the new firmware's changes and its potential impact.

By IPVM Team - 3 months ago

FLIR Responds to Dahua Backdoor

(PRO Only)

FLIR is the first Dahua OEM partner to issue a statement following Dahua's backdoor disclosure: Certain FLIR and Lorex branded products that are produced by Dahua may be affected by this vulnerability. To reduce concern / problems, they hi...

By John Honovich - 3 months ago

Hikvision Firmware Decrypted

(PRO Only)

A developer has decrypted Hikvision's firmware, allowing examination of Hikvision's device source code and contents. In this report, we overview the tool, showing you how it works, sharing a Hikvision's camera decrypted firmware and overviewing s...

By Brian Karas - 3 months ago

Who Is Hacking Hikvision Devices?

(PRO Only)

Someone or organization is mass hacking Hikvision devices, actively and systematically running a script / program across the Internet that looks for Hikvision devices, finds them, and, at least, locks the user out. The most significant misconcept...

By Brian Karas - 3 months ago

Dahua Backdoor Uncovered

(PRO Only)

A major cyber security vulnerability across many Dahua products has been discovered by an independent researcher, reported on IPVM, verified by IPVM and confirmed by Dahua. Upgrade Immediately A 'number' of Dahua HDCVI and IP cameras and recor...

By IPVM Team - 3 months ago

Hikvision Defaulted Devices Getting Hacked

Hikvision devices with default passwords and remote network access enabled (via DDNS, public IPs, etc.) have experienced wide spread hacking over the past month locking out users, IPVM has confirmed. This is new, and from what has been reported b...

By Brian Karas - 3 months ago

Hikvision Barred From US City Housing Authority Bid

A US city's housing authority has barred Hikvision products from their bid, due to 'increasing security concerns.' In the past few months: Hikvision has been removed from a US Embassy Hikvision has been expelled from Genetec, quarantined...

By John Honovich - 3 months ago

Hikvision Pledges 'Never' 'Backdoors'

(PRO Only)

With criticisms rising, Hikvision has gone on the record publicly declaring: Hikvision never has, does or would intentionally contribute to the placement of “backdoors” in its products. One indisputable point is that Hikvision is clearly ...

By John Honovich - 4 months ago

Hikvision Discontinuing Online Service

Hikvision has declared it will discontinue its Hikvision online service, just days after IPVM's Hikvision Cloud Security Vulnerability Uncovered report. The abrupt move, including blocking logins in a few weeks, is troubling many dealers amidst on...

By John Honovich - 6 months ago

Sony IP Camera Backdoor Uncovered

A backdoor has been uncovered in ~80 Sony IP camera models, attackers can remotely enable telnet on the camera, and then potentially login as root, giving them full access to control the camera. Sony has issued new firmware for all cameras to fix...

By Brian Karas - 6 months ago

XiongMai Master Password List Emailed By Chinese Spammer

(PRO Only)

XiongMai created an international uproar as their devices drove massive botnet attacks of major Internet sites. After pledging to recall cameras after the attack, and then threatening to sue those who criticized them, XiongMai is back. A Chinese...

By Brian Karas - 6 months ago

Hikvision Cloud Security Vulnerability Uncovered

(PRO Only)

A security researcher uncovered a critical vulnerability in Hikvision's global cloud servers. This vulnerability allowed an attacker to remotely take over the server and get access to sensitive customer data. This is newer and different than Hikvi...

By Brian Karas - 6 months ago

Displaying 'Hacking' tags 1 - 25 of 60 in total