Stories
Slash Boxes
Comments

SoylentNews is people

Researchers Find Fresh Fodder for IoT Attack Cannons

posted by cmn32480 on Sunday December 18 2016, @08:37PM   Printer-friendly
from the why-putting-everything-on-the-internet-is-a-bad-idea dept.
Security

Fnord666 writes:

Brian Krebs has posted an interesting article discussing IP cameras from Sony and other white labeled IP cameras that researchers recently found vulnerable to attacks that could see them being added to the Mirai arsenal.

New research published this week could provide plenty of fresh fodder for Mirai, a malware strain that enslaves poorly-secured Internet of Things (IoT) devices for use in powerful online attacks. Researchers in Austria have unearthed a pair of backdoor accounts in more than 80 different IP camera models made by Sony Corp. Separately, Israeli security experts have discovered trivially exploitable weaknesses in nearly a half-million white-labeled IP camera models that are not currently sought out by Mirai.

In a blog post published today, Austrian security firm SEC Consult said it found two apparent backdoor accounts in Sony IPELA Engine IP Cameras — devices mainly used by enterprises and authorities. According to SEC Consult, the two previously undocumented user accounts — named "primana" and "debug" — could be used by remote attackers to commandeer the Web server built into these devices, and then to enable "telnet" on them.

[...] "We believe that this backdoor was introduced by Sony developers on purpose (maybe as a way to debug the device during development or factory functional testing) and not an 'unauthorized third party' like in other cases (e.g. the Juniper ScreenOS Backdoor, CVE-2015-7755)," SEC Consult wrote.

It's unclear precisely how many Sony IP cameras may be vulnerable, but a scan of the Web using Censys.io indicates there are at least 4,250 that are currently reachable over the Internet.

[Editor note: I have been getting occasional 502 errors from krebsonsecurity.com pages yesterday and today.]

Original Submission

This discussion has been archived. No new comments can be posted.
Researchers Find Fresh Fodder for IoT Attack Cannons | Log In/Create an Account | Top | 2 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 3, Funny) by Megahard on Sunday December 18 2016, @10:01PM

    by Megahard (4782) on Sunday December 18 2016, @10:01PM (#442835)

    I want one.

  • (Score: -1, Troll) by Anonymous Coward on Monday December 19 2016, @01:06AM

    by Anonymous Coward on Monday December 19 2016, @01:06AM (#442886)

    Israeli security experts have discovered trivially exploitable weaknesses in nearly a half-million white-labeled

    Wasn't that six million? Someone should write to them letting them know of this blatant error. Again, the figure should be "Six Million".

    And while we're at "white-labeled", is that a side-attack on those who call themselves "white"?

    And how did they go through the half-million IP camera models? Are there a half-million IP camera models out there? I am sure they never laid a hand on said "half-million" pieces of hardware. What about proof? Its a huge number. But when jews are involved, the numbers are always huge. And facts don't matter.