• Re-branded IP cameras, DVRs easily hacked

    Home » Forums » Cyber Security Information and Advisories » Code Red – Security/Privacy advisories » Re-branded IP cameras, DVRs easily hacked

    Tags:

    Author
    Topic
    Kirsty
    Manager
    October 9, 2018 at 11:19 pm #223356

    Over nine million cameras and DVRs open to APTs, botnet herders, and voyeurs

    Re-branded IP cameras and DVRs sold by over 100 companies can be easily hacked, researchers say.

    By Catalin Cimpanu | October 9, 2018

     
    Millions of security cameras, DVRs, and NVRs contain vulnerabilities that can allow a remote attacker to take over devices with little effort, security researchers have revealed today.

    All vulnerable devices have been manufactured by Hangzhou Xiongmai Technology Co., Ltd. (Xiongmai hereinafter), a Chinese company based in the city of Hangzhou.

    But end users won’t be able to tell that they’re using a hackable device because the company doesn’t sell any products with its name on them, but ships all equipment as white label products on which other companies put their logo on top.

    Security researchers from EU-based SEC Consult say they’ve identified over 100 companies that buy and re-brand Xiongmai devices as their own.

    SEC Consult says the easiest way to identify a Xiongmai-manufactured (and later rebranded) device is by the equipment’s admin panel login page, which looks like the image below:

     
    Read the full article here

    4 users thanked author for this post.
    HiFlyer, AlexEiffel, BobbyB, satrow
    Reply | Quote
    Viewing 0 reply threads
    Author
    Replies
    • HiFlyer
      AskWoody Lounger
      October 10, 2018 at 11:32 am #223509

      Krebs on Security also has good detailed info.

      Krebs on Security has posted a new item.

      What do we do with a company that regularly pumps metric tons of virtual toxic
      sludge onto the Internet and yet refuses to clean up their act? If ever there
      were a technology giant that deserved to be named and shamed for polluting the
      Web, it is Xiongmai — a Chinese maker of electronic parts that power a huge
      percentage of cheap digital video recorders (DVRs) and Internet-connected
      security cameras.

      https://krebsonsecurity.com/2018/10/naming-shaming-web-polluters-xiongmai/

       

      Reply | Quote
    Viewing 0 reply threads
    Reply To: Re-branded IP cameras, DVRs easily hacked

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information:




DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • Knowledge Base
  • How to use the Forums
  • All Forums

    • Recent Topics

    My Profile

    May 2025
    S M T W T F S
     123
    45678910
    11121314151617
    18192021222324
    25262728293031

    Remembering Woody

     

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2025 by AskWoody Tech LLC. All Rights Reserved.