Hacking (132)

Displaying 'Hacking' tags 26 - 50 of 132 in total

Dahua's Terrible Cybersecurity, Buys Credibility From PSA And SIA

Dahua has a terrible cybersecurity track record. But American organizations, like the Security Industry Association (SIA) and the PSA Security Network, are happy to sell them credibility, declaring Dahua a 'cyber responsible partner', thanking...

By John Honovich - about 3 years ago

Canon Responds To IP Camera Hacks

Canon cameras made international news earlier this month, with reports of them being hacked in Japan (e.g., Hackers disable scores of Canon-made security cameras across Japan and Dozens of Canon security cameras hacked in Japan, possibly because...

By IPVM Team - about 3 years ago

Corruption Alleged Against Hikvision Procurement In India

(Member Only)

Over the past month, allegations of corruption and national security risk have made the news in India over the planned purchase of 150,000 Hikvision cameras, such as: In this note, we examine the conflict, contrast it to the US government's...

By John Honovich - about 3 years ago

Cybersecurity for IP Video Surveillance Guide

(Member Only)

Keeping surveillance networks secure can be a daunting task, but there are several methods that can greatly reduce risk, especially when used in conjunction with each other. In this guide, we look at several security techniques, both physical...

By IPVM Team - about 3 years ago

Hikvision Source Code Transparency Center Examined

Following criticism of Hikvision's Chinese government ownership and Hikvision's IP camera backdoor, the company has responded with a series of steps including hiring a Director of Cybersecurity and starting a dedicated cybersecurity hotline. The...

By John Honovich - about 3 years ago

Hikvision Critical Cloud Vulnerability Disclosed

(Member Only)

Security researchers Vangelis Stykas [link no longer available] and George Lavdanis [link no longer available] discovered a vulnerability in Hikvision's HikConnect cloud service that: just by knowing the email,phone or username they used while...

By IPVM Team - over 3 years ago

TVT Backdoor Disclosed

(Member Only)

Security researcher Bashis has disclosed a backdoor in TVT video surveillance products, with TVT issuing its own 'Notification of Critical Vulnerabilities'. Bashis has found numerous vulnerabilities in video surveillance products, most notably...

By IPVM Team - over 3 years ago

Hanwha / Kaspersky Vulnerability Dispute Examined

(Member Only)

IT media ran numerous reports in the past month featuring two prominent companies - Hanwha (previously part of mega manufacturer Samsung) Techwin who sells significant numbers of consumer security cameras and Kaspersky, most known for last year's...

By IPVM Team - over 3 years ago

Hikvision HQ Contradicts Cybersecurity Director

Hikvision HQ has contradicted Hikvision USA's Director of Cybersecurity, Chuck Davis [link no longer available]. Davis - Don't Put Cameras On The Internet [link no longer available] Davis made a very good point in a recent SP&T...

By John Honovich - over 3 years ago

New Whole Foods Installs Hackable Access Control (Upgraded)

Whole Foods has built a reputation for high quality. And their 2017 Amazon acquisition has increased that, plus added deep pockets for buying security equipment to protect their stores. But do they have the same high standards for access...

By Brian Rhodes - over 3 years ago

IP Cameras Default Passwords Directory

Below is a directory of 50+ manufacturer's default passwords. Note: Change Default Passwords Leaving default passwords is dangerous and makes it easy for even inexperienced attackers to take control, brick or watch your video feed. Worse, since...

By Ethan Ace - over 3 years ago

Simplisafe 'All New' Generation 3 Tested

(Member Only)

Feared by the traditional alarm industry, Simplisafe has launched its 'all new' Generation 3 platform that they declare is "Stronger. Faster. Safer.": doubling-down on SimpliSafe’s core mission from day one: to make the best home protection...

By Brian Rhodes - over 3 years ago

Geovision Unprecedented Security Vulnerabilities And Backdoor

(Member Only)

Cybersecurity vulnerabilities have plagued the video surveillance market. Now, Bashis, discover of the Dahua backdoor, has discovered 15 security vulnerabilities including a backdoor that widely impact GeoVision's cameras.  Inside, we...

By John Scanlan - over 3 years ago

US Congressional Hearing Features Hikvision

(Member Only)

A US Congressional hearing asked questions about Hikvision's government ownership and cybersecurity issues, following the WSJ's investigations into Hikvision. Plus, Hikvision has issued a 'special bulletin' response to their dealers. In this...

By John Honovich - over 3 years ago

Chinese Government Backdoor Spies on African Union Revealed

For 5 years, a Chinese government backdoor was used to spy on the African Union, according to a Le Monde investigative report. As is their tactic, China angrily dismissed the report as absurd. China had 'donated' the building and computer...

By John Honovich - over 3 years ago

Worst NVR / VMS Manufacturers 2018

(Member Only)

These are the manufacturers who integrators reported the most significant problems with. 220+ integrators answered: In the past year, what VMS / NVR system have you had the worst experience with? What happened? A notable shift occurred...

By IPVM Team - over 3 years ago

Hacked Hikvision IP Camera Map USA And Europe

The interactive map below shows a sample of hacked and vulnerable Hikvision IP cameras across the USA and Europe. Hover over a marker to see an image from that camera: [Note: this report and map was originally published on Dec 18th for the USA...

By IPVM Team - over 3 years ago

Hikvision Removed From US Army Base, Congressional Hearing Called

Hikvision has been removed from a US Army Base and a US congressional committee is planning a hearing on cybersecurity risks and specifically, Hikvision, reports the WSJ in a follow up to their (WSJ) Investigation Into Hikvision. This is a...

By IPVM Team - over 3 years ago

Hikvision Declares 'Never Click On Links In Emails'

(Member Only)

Hikvision is stepping up its cybersecurity efforts with a clear recommendation - to never click on links in emails: It is a surprising change since Hikvision has relied on links in their 'Special Bulletin' emails in responding to their own...

By IPVM Team - over 3 years ago

Broken Hikvision App Exposes Hypocrisy

While Hikvision talks about a commitment to cybersecurity, their broken app and their insecure 'solution' exposes not only their engineering problems but their hypocrisy about cybersecurity. In this note, we examine the problems, angry Hikvision...

By John Honovich - over 3 years ago

Hikvision UPnP Hacking Risk

Hikvision IP cameras are being hacked even for end users who had not set up port forwarding and believed their cameras were 'safe' behind firewalls. The problem is UPnP and, more specifically, how Hikvision has insecurely used UPnP over the...

By IPVM Team - over 3 years ago

Dahua Forbes 'Next Web Crisis' Vulnerability Dispute

(Member Only)

The buffer overflow vulnerability in Dahua products is not in dispute, in fact we covered it when it was first published. What is in dispute is how significant the vulnerability is, and the risks posed to users with unpatched devices. This was...

By Brian Karas - over 3 years ago

Displaying 'Hacking' tags 26 - 50 of 132 in total