SoylentNews
SoylentNews is people
https://soylentnews.org/

Title    Hundreds of Thousands of Web CCTV Cams Still at Risk of Hijacking
Date    Saturday December 10 2016, @09:34PM
Author   
Topic   
from the panopticon-nation dept.
https://soylentnews.org/article.pl?sid=16/12/10/0431206

Arthur T Knackerbracket has found the following story from The Register:

Amid ongoing malware infections of IoT gadgets and armies of commandeered gizmos attacking server, glaring security holes in web-connected CCTV cameras are going unpatched.

So say researchers with Cybereason, who claim a pair of high-profile vulnerabilities they spotted in surveillance cams two years ago have been completely ignored by vendors – thus leaving the door wide open for miscreants to hijack potentially "hundreds of thousands" of devices and use them for attacks.

Cybereason's Amit Serper says he and fellow researcher Yoav Orot exploited flaws in off-the-shelf internet-connected cameras back in 2014 in an effort to show how poor IoT security was at the time.

Since then, Serper says, the bugs have not only gone unpatched, but the insecure code has popped up in network camera firmware shipped by dozens of manufacturers selling their weak wares on Amazon. The Cybereason pair finger VStarcam as one vendor of vulnerable kit.

Original Submission

Links
  1. "following story" - http://www.theregister.co.uk/2016/12/07/ip_cameras_unpatched/
  2. "researchers with Cybereason" - https://www.cybereason.com/zero-day-exploits-turn-hundreds-of-thousands-of-ip-cameras-into-iot-botnet-slaves/
  3. ""hundreds of thousands" of devices" - https://www.youtube.com/watch?v=Vf1Z7IzJbWs
  4. "Original Submission" - https://soylentnews.org/submit.pl?op=viewsub&subid=17350
© Copyright 2024 - SoylentNews, All Rights Reserved

printed from SoylentNews, Hundreds of Thousands of Web CCTV Cams Still at Risk of Hijacking on 2024-04-20 04:08:57