Many Surveillance Cameras Are Easily Hacked

As in, no security measures to speak of

Reason Staff | 1.29.2013 12:28 PM

The digital video recorders of several CCTV video cameras are vulnerable to attacks that create a means for hackers to watch, copy or delete video streams, according to security researchers.

The researchers added that unless systems are properly firewalled, security flaws in the the firmware of the DVR platform also create a jumping-off point for attacks aimed at networks supporting these devices. The hackable CCTV devices from an estimated 19 manufacturers all use allegedly vulnerable firmware from the Guangdong, China-based firm Ray Sharp.

The issue was first exposed last week by a hacker using the handle someLuser, who discovered that commands sent to a Swann DVR of port 9000 were accepted without any authentication. The vulnerability created a straightforward means to hack into the DVR's web-based control panel. To make matters worse, the DVRs support Universal Plug And Play, making control panels externally visible on the net. Many home and small office routers enable UPnP by default. This has the effect of exposing tens of thousands of vulnerable DVRs to the net.

Start your day with Reason. Get a daily brief of the most important stories and trends every weekday morning when you subscribe to Reason Roundup.

NEXT: The DEA Wants to Access Your Medical Records Without Consent or a Warrant

Show Comments (1)

Many Surveillance Cameras Are Easily Hacked

As in, no security measures to speak of

Latest

Colorado Bans HOAs From Banning Home Businesses

FCC Set To Reinstate Net Neutrality Rules That Seem More Unnecessary Than Ever

She Only Served 10 Months Behind Bars. Florida Still Slapped Her With A $127,000 Bill.

Tennessee Gov. Bill Lee Quietly Kills Clemency Initiative for Drug-Free School Zone Offenders

This Bill Would Give the Treasury Nearly Unlimited Power To Destroy Nonprofits

Recommended

Login Form