Hacking (132)

Displaying 'Hacking' tags 101 - 125 of 132 in total

Hikvision 'Phone Home' Raises Security Fears

The escalating attention towards Hikvision's China government ownership and Genetec's removal of Hikvision due to cyber security concerns has triggered increased scrutiny of Hikvision devices. Hikvision's 'phone home' feature is raising...

By John Honovich - over 4 years ago

Genetec Expels Hikvision

(Member Only)

Genetec has removed support for Hikvision devices, deeming them 'untrustworthy', citing customer concerns about Chinese government ownership / control. While manufacturers infrequently remove support for competitive reasons, doing it for cyber...

By John Honovich - over 4 years ago

Dahua Says They Are Botnet Attack 'Victims'

(Member Only)

'Victim' or 'accomplice'? Dahua has issued a new press release, referring to their products as 'victims' of the massive botnet attacks hitting the Internet, emphasizing that Xiongmai devices were more heavily used and that publications have...

By John Honovich - over 4 years ago

The Xiongmai Botnet 'Recall' Will Not Work

The Xiongmai 'recall' has been the topic of global news, following the unprecedented bot net attacks that use their equipment, among others. However well intentioned this 'recall' may be, it is not going to work. Understanding how Xiongmai and...

By John Honovich - over 4 years ago

Video Surveillance Manufacturers Risk Lawsuits For Botnet Attacks

The unprecedented scale of internet outages on October 21st from botnet attacks risk triggering lawsuits against video surveillance manufacturers, an event that might spur greater responsibility within the industry. Large Loss For Companies...

By John Honovich - over 4 years ago

Hacked DVRs Surge To 400,000

The global internet is under attack from record breaking botnets. And it is getting worse, Mirai doubled in size in the last month. Shamefully, the video surveillance industry is mostly to blame. New Mirai Research New research from Level 3...

By Brian Karas - over 4 years ago

Dahua ‘Duplicitous’ Says Botnet Victim

The victim of the record-breaking botnet, Brian Krebs, is calling Dahua duplicitous in its statements about the Mirai botnet. He says Dahua should bear more responsibility for enabling this botnet and that they are more at fault, for making poorly...

By Brian Karas - over 4 years ago

Dahua Won't Say, But Anyone With Telnet Enabled Is At Risk

(Member Only)

Dahua has decided not to provide details they have about how hackers are exploiting their products. They explained: A public statement about what technology is in place and which models have certain security features would serve as a beacon to...

By Brian Karas - over 4 years ago

Wall Street Journal Runs Report on Dahua Hack

The Wall Street Journal is bringing attention to the massive Dahua attack we reported on Tuesday. In an Thursday article entitled, "Hackers Infect Army of Cameras, DVRs for Massive Internet Attacks", the Journal notes: "The attackers used as...

By IPVM Team - over 4 years ago

Hacked Dahua Cameras Drive Massive Mirai Cyber Attack

(Member Only)

Cyber attacks are accelerating and IP cameras are behind many of them. Worse, last week, a 'massive' attack was carried out using numerous Dahua (and their OEMs) cameras.  In this report we look at two recent attacks, the likelihood of similar...

By Brian Karas - over 4 years ago

ADI Refuses to Fix Their OEM'd Hikvision Security Risks [Solved]

More than a year after massive hacks against Hikvision was disclosed; More than 9 months after Hikvision issued improved security firmware, mega distributor and Hikvision OEM ADI still refuses to fix the well-known security risk. ADI is still...

By Brian Karas - over 5 years ago

Arecont and Bosch - Default Security Risk

(Member Only)

Default passwords are a major security risk, enabling hackers around the world to access and control devices like IP cameras (using Shodan, turning devices into bitcoin miners, etc.). Because of that, many manufacturers now force changing the...

By IPVM Team - over 5 years ago

Axis Cybersecurity Hardening Guide Examined

(Member Only)

In most IT areas, 'hardening' guides are commonplace, providing best practices for improving the cybersecurity of network products (e.g., see this Cisco hardening guide). However, cybersecurity is generally an after thought in the physical...

By Ethan Ace - over 5 years ago

IP Camera Trolling - Cybersecurity Showcase

If you want to convince your customers about the importance of cybersecurity and the risk of being the next Hikvision, Foscam or Trendnet, show them 'IP Camera Trolling'. Physical security professionals are largely indifferent to cybersecurity,...

By John Honovich - over 5 years ago

Dahua Finally Has A US Distributor

(Member Only)

Finally. Billion dollar Dahua is the 'smaller' of the two mega Chinese surveillance manufacturers (the other being Hikvision). Historically, Dahua has made it very hard to buy from them in the US, unfortunately pushing people to buy from random...

By John Honovich - over 5 years ago

Warning: ADI and Tri-Ed Video Products Major Security Risk

Recently, ADI and Tri-Ed both started OEMing Hikvision products. Reference - IPVM test on ADI W Box, IPVM test of Tri-Ed Northern Video. Both ADI and Tri-Ed are using old firmware (respectively 5.2 and 5.1) that were involved in major Hikvision...

By John Honovich - over 5 years ago

Hikvision Trojan Mobile App

(Member Only)

With a vengeance. The last time, the industry mostly shook it off. This time, it is clearly much worse. In this note, we examine Hikvision's trojan horse app, the company's response, why this is a major concern and who stands to benefit from...

By John Honovich - over 5 years ago

Anixter/Tri-Ed Northern Video Tested

(Member Only)

ADI is an IP video manufacturer now (see IPVM's ADI W Box test results). And now, their top rival, Anixter's Tri-Ed arm has also entered the IP video manufacturering business, under the Northern Video brand name. But can Tri-Ed really compete...

By Ethan Ace - over 5 years ago

ADI's W Box Camera / NVR Gen 1 (Hikvision) Tested

(Member Only)

ADI moves hundreds of millions of dollars worth video surveillance equipment each year. And now, they are disrupting the channel, cutting out manufacturers. We bought an IP camera and NVR from ADI's new W Box line to learn more. The products are...

By Ethan Ace - almost 6 years ago

Hikvision Anti Hacking Firmware Tested

Hikvision has had historic hacking problems, with DVRs turned into Bitcoin miners, buffer overflow vulnerabilities, and finally culminating in the hacking of a Chinese province's cameras due to weak passwords. In response to these attacks,...

By Ethan Ace - about 6 years ago

Hikvision Hires Ex-Samsung / Panasonic Exec

Hikvision's expansion continues, with the mega Chinese manufacturer now hiring one of the most well known and well tenured American sales executives. In this note, we break down what Hikvision is looking to do here, how Frank De Fina will fit and...

By John Honovich - about 6 years ago

Hikvision Default Password Hacking

What was once just warnings and consumer concerns has exploded into a major problem for Hikvision. A Chinese province's Hikvision devices have been hacked. In this note, we examine what happened, what Hikvision says they are doing about this and...

By John Honovich - over 6 years ago

Displaying 'Hacking' tags 101 - 125 of 132 in total