Hikvision IP Camera And Recorder New High Severity Hik-Connect Vulnerability Analyzed
This report requires an IPVM Research Service subscription. Learn more.
By bashis mcw - 5 months ago
Vulnerability (85)
Displaying 'Vulnerability' tags 26 - 50 of 85 in total
How the Seader App Works With HID SAMs and Flipper Zero
While Flipper Zero (see test) has become a viral sensation, it does not work out of the box with HID's widely used SE / Seos "highly secure"...
By Mert Karakaya - 5 months ago
Hikvision High Severity Vulnerability November 2023 Analyzed
This report requires an IPVM Research Service subscription. Learn more.
By bashis mcw - 5 months ago
Airport Knowingly Broke Federal NDAA Law Buying Huawei-Equipped Verkada Cameras
The same airport that Verkada sent to collections knowingly broke federal NDAA law by buying Huawei-enabled Verkada cameras, despite even Verkada...
By Conor Healy - 5 months ago
Avigilon Alta 3 Vulnerabilities November 2023 Analyzed
This report requires an IPVM Research Service subscription. Learn more.
By bashis mcw - 6 months ago
How Flipper Zero Increases The Risks Of Access Control Hacks
While many view Flipper Zero as a toy, it is a booming business, and IPVM tests showed that it can clone many widely used access control...
By Nikita Ermolaev - 6 months ago
Hanwha SolidEdge Cameras High Severity Vulnerability 2023
This report requires an IPVM Research Service subscription. Learn more.
By bashis mcw - 6 months ago
Turing Edge+ Cloud Cameras, Critical Security Vulnerability 2023
This report requires an IPVM Research Service subscription. Learn more.
By bashis mcw - 6 months ago
Axis 3 Vulnerabilities October 2023 Analyzed
This report requires an IPVM Research Service subscription. Learn more.
By bashis mcw - 7 months ago
HID Restricts Secure Access Module (SAM) Sales As Security Risks Rise
The critical component for reading HID Seos credentials is HID's Secure Access Module (SAM) which had long been available for sale...
By Mert Karakaya - 7 months ago
Qognify NiceVision Hardcoded Credentials, 10.0 Critical Vulnerability
The US Government issued an advisory this month for Qognify NiceVision Net 3.1 using hard-coded credentials. In this report, IPVM analyzes...
By Sean Patton - 7 months ago
HID Should Stop Selling And Supporting 125 kHz
HID should stop selling and supporting 125 kHz credentials. Not only have such credentials been cracked for many, many years, but new devices...
By IPVM Team - 7 months ago
HID Standard Profile Makes 13.56 MHz SE / Seos As Vulnerable As Cracked 125 kHz For Downgrade Attack
While 13.56 MHz HID SE and Seos are marketed as high security and used in critical infrastructure, they are just as vulnerable as long-cracked 125...
By Mert Karakaya and Brian Rhodes - 8 months ago
Huawei Founded Uniview, Uniview Now Hides
For years, Uniview bragged about how Huawei founded it and its deep ties to Huawei, but, in the past few years, Uniview stopped and even hid such...
By IPVM Team - 8 months ago
FTC Targets Biometrics Deception and Unfairness Analyzed
This report requires an IPVM Research Service subscription. Learn more.
By Conor Healy and William Howard-Waddingham - 8 months ago
Uniview New 2023 Critical Vulnerability Analyzed
This report requires an IPVM Research Service subscription. Learn more.
By bashis mcw - 8 months ago
Hikvision Makes Child Pornography Distribution Harder With Improvements To Hik-Connect App
IPVM recently exposed Child Pornography On Sale From Hacked Hivision Cameras Using Current Hik-Connect App. Now, Hikvison has released a new...
By bashis mcw and John Scanlan - 8 months ago
"BIG Payouts": SSD Seeks Critical Vulnerabilities for Axis, Dahua Devices
The company offering up to $75,000 for Uniview exploits is now seeking vulnerabilities for Dahua, Axis, Mobotix, and truVision (i.e., Interlogix...
By bashis mcw and Charles Rollet - 9 months ago
Zero Day Broker SSD Sells Early Access To Cybersecurity Vulnerabilities
While the norm for cybersecurity disclosure is to share vulnerabilities only with the vendor until the vendor fixes them, zero-day broker SSD has...
By Charles Rollet - 9 months ago
Hikvision's Hik-Connect Cloud Connects To Vulnerable Devices
Vast numbers of Hikvision devices are vulnerable, but atypically, Hikvision's cloud service connects to those devices, without forcing any...
By IPVM Team - 9 months ago
Researchers Sensationalize OSDP "Badge of Shame" Risks
A security research firm bestowed a "badge of shame" on OSDP, alleging "breaking into secure facilities." However, those allegations are overhyped...
By bashis mcw and Brian Rhodes - 9 months ago
Geovision 9.8 Critical Vulnerability From Uniview Examined
This report requires an IPVM Research Service subscription. Learn more.
By bashis mcw - 9 months ago
Axis OSDP Implementation Vulnerabilities Analyzed
This report requires an IPVM Research Service subscription. Learn more.
By bashis mcw - 10 months ago
Hikvision Cloud / QR Codes Enables Livestreaming Child Pornography Explained
Many mistakenly believe that child pornography being sold online from hacked Hikvision cameras was only due to "old" vulnerabilities. Far more...
By IPVM Team - 10 months ago
Telegram Terminates Channels Marketing Child Pornography, No Response From Hikvision
Telegram has now terminated all 7 channels marketing child pornography from hacked Hikvision cameras, which IPVM reported to the...
By IPVM Team - 10 months ago
