"It’s just a boneheaded decision on the part of ," says Moore. He then used the scanning tool NMAP to dig up thousands of vulnerable machines visible on the Internet. Rapid7's Moore confirmed someLuser's findings and traced the problem in the Swann machine to the device's firmware sold by Ray Sharp.
RED ALARM GREEN NORMAL KGUARD PC
That feature, designed to allow users to remotely access their video files via remote PC or phone, effectively cuts a hole in any firewall that would expose the device to attackers, too. To compound the problem, the DVRs automatically make themselves visible to external connections using a protocol known as Universal Plug And Play, (UPnP) which maps the devices' location to any local router that has UPnP enabled-a common default setting. "Anyone who can connect to port 9000 on the device can send this request and retrieve that information," said someLuser, who declined to reveal his real name when I reached him by instant message. And worse, he was able to use that unprotected connection to retrieve the login credentials for the DVR's web-based control panel. He found that commands sent to the device via a certain connection, port 9000, were accepted without any authentication.
RED ALARM GREEN NORMAL KGUARD SERIAL
"You could look at videos, pause and play, or just turn off the cameras and rob the store."Įarly last week a security researcher who goes by the name someLuser published a blog post detailing his dissection of a DVR built by the security firm Swann, disassembling the device and running tests on it via its serial port. "The DVR gives you access to all their video, current and archived," says Moore. Moore, has discovered that 58,000 of the hackable video boxes, all of which use firmware provided by the Guangdong, China-based firm Ray Sharp, are accessible via the Internet.
And one of the researchers, security firm Rapid7's chief security officer H.D. Eighteen brands of security camera digital video recorders (DVRs) are vulnerable to an attack that would allow a hacker to remotely gain control of the devices to watch, copy, delete or alter video streams at will, as well as to use the machines as jumping-off points to access other computers behind a company's firewall, according to tests by two security researchers.
0 kommentar(er)
