Dahua USA / Luminys Pitch Future Plan To FCC
Zhejiang (China) Dahua says it has sold off Dahua USA and has pitched the FCC on its future plans. In this note, IPVM examines what the...
By William Howard-Waddingham - 5 days ago
Cybersecurity (346)
Displaying 'Cybersecurity' tags 1 - 25 of 346 in total
Hikvision 3 NVR Vulnerabilities April 2024 Analyzed
This report requires an IPVM Research Service subscription. Learn more.
By bashis mcw - 5 days ago
National Real Time Crime Center Association President Nikki North Interview
Real Time Crime Centers are rising in popularity for police departments, yet their mission and functionality are often unknown to the...
By Stephanie Cohen - 8 days ago
Mercury Red Board 2022 10.0 Vulnerability Examined
HID's Mercury is abruptly EOLing their red boards, with a partner citing "reducing latency and vulnerabilities," but how have red boards been...
By Mert Karakaya and bashis mcw - 12 days ago
How Axis Provides Unique ID For Devices With Edge Vault
Axis claims that it provides its devices with "unique IDs" that work like passports to increase security and integrity with its "Axis Edge Vault,"...
By bashis mcw - 16 days ago
Axis Launches Open Platform Cloud Connect
While Axis was very early to the cloud (AVHS, STS, etc.), in retrospect, too early, the company is now unveiling an entirely new platform at ISC...
By John Honovich and Jermaine Wilson - 17 days ago
Axis 4 VAPIX API Vulnerabilities February/March 2024 Analyzed
This report requires an IPVM Research Service subscription. Learn more.
By bashis mcw - 18 days ago
NIST Disallows 3DES Encryption, Impact On Physical Access Control And Video Surveillance
Starting this year, NIST is disallowing 3DES encryption, which was broadly adopted in the 2000s and is still used in some physical access control...
By Mert Karakaya - 22 days ago
NIST Version 2.0 Cybersecurity Framework Examined
The US government's NIST published a new version of its Cybersecurity Framework (CSF), calling it a landmark and the first major update in a...
By bashis mcw - 23 days ago
Court Denies Dahua and Hikvision FCC Ban Appeal
The US Court of Appeals for the District of Columbia has denied Dahua and Hikvision's challenge to the FCC ban on new product...
By William Howard-Waddingham - 24 days ago
Eagle Eye / RapidSOS 911 Camera Sharing Analyzed
This report requires an IPVM Research Service subscription. Learn more.
By John Honovich - 25 days ago
Tech Details of HID's Mercury Upcoming "Black" Boards
With HID's Mercury EOLing its widely used "red" boards in the next few months, questions have been raised about why and how the new "black" boards...
By Jermaine Wilson - 25 days ago
US Cyber Trust Mark Program Bars Dahua and Hikvision + Proposes Restrictions for PRC China Products
The FCC implemented the US Cyber Trust Mark program on March 14, 2024. For background, see: Enterprise IP Cameras Ineligible for US Cyber...
By Conor Healy and William Howard-Waddingham - 26 days ago
Enterprise IP Cameras Ineligible for US Cyber Trust Mark Program
The US FCC has implemented a cyber labeling program meant to promote compliance with federal cybersecurity standards, but almost all commercial IP...
By Conor Healy and William Howard-Waddingham - about 1 month ago
Dormakaba Stops Selling / Supporting Cracked Mifare Classic Credentials
While MIFARE Classic credentials have been cracked for many, many years, and new devices simplify exploiting such vulnerabilities, Dormakaba has...
By IPVM Team - about 1 month ago
Symmetric vs Asymmetric Encryption for Physical Access Control
While asymmetric encryption is widely used for payments and considered especially secure, physical access control overwhelmingly uses symmetric...
By Mert Karakaya - about 1 month ago
Russian Military Used Hacked Cameras in Missile Strike on Capital, Alleges Ukraine
Russia hacked video surveillance cameras as part of a massive air attack on Kyiv, according to Ukrainian security services. Several countries...
By Conor Healy - about 1 month ago
Dormakaba "Unsaflok" / MIFARE Classic Vulnerability Examined
How does the Dormakaba "Unsaflok" vulnerability work? In our first report - Dormakaba Discloses Critical Vulnerability, To Rip And Replace Access...
By bashis mcw - about 1 month ago
Dormakaba Discloses Critical Vulnerability, To Rip And Replace Access For 300,000 Doors
Cracked access control credentials are a rising concern as technologies developed decades ago are still widely sold and used and are increasingly...
By Mert Karakaya, bashis mcw, and Jermaine Wilson - about 1 month ago
Milestone To Require End-User Information, Citing Responsible Use And Sanctions
Over the past five years, Milestone has ramped up efforts to ensure the responsible use of its technology, including adding an anti-abuse...
By IPVM Team - about 1 month ago
Bosch 47 VMS / Recorder Vulnerabilities March 2024 Analyzed
This report requires an IPVM Research Service subscription. Learn more.
By bashis mcw - about 1 month ago
Viisights Insolvency, Rehabilitation, And Acquisition Plans
Viisights is one of just a few video analytics companies focusing on "behavioral" analytics, most notably fighting or what they call "violence...
By John Honovich - about 1 month ago
Evolv False Claims About US DHS And UK Government Testing
As Evolv attempted to "correct the misinformation" about the company, following admitting the SEC is investigating the company, it misrepresented...
By Nikita Ermolaev - about 1 month ago
Senate Chairman Says AI Legislation "Probably Not Going to Get Done" Short Term
Surging use of AI, including biometrics, has triggered broad calls for federal legislation to mitigate risks and protect privacy. But the Chairman...
By William Howard-Waddingham - about 1 month ago
The ETSI EN 303 645 Cybersecurity Certification Examined
Axis recently announced obtaining the ETSI EN 303 645 cybersecurity certification, joining Dahua, which announced this in 2022. What is ETSI and...
By bashis mcw - about 2 months ago
