Many Surveillance Cameras Are Easily Hacked

As in, no security measures to speak of

Reason Staff | 1.29.2013 12:28 PM

The digital video recorders of several CCTV video cameras are vulnerable to attacks that create a means for hackers to watch, copy or delete video streams, according to security researchers.

The researchers added that unless systems are properly firewalled, security flaws in the the firmware of the DVR platform also create a jumping-off point for attacks aimed at networks supporting these devices. The hackable CCTV devices from an estimated 19 manufacturers all use allegedly vulnerable firmware from the Guangdong, China-based firm Ray Sharp.

The issue was first exposed last week by a hacker using the handle someLuser, who discovered that commands sent to a Swann DVR of port 9000 were accepted without any authentication. The vulnerability created a straightforward means to hack into the DVR's web-based control panel. To make matters worse, the DVRs support Universal Plug And Play, making control panels externally visible on the net. Many home and small office routers enable UPnP by default. This has the effect of exposing tens of thousands of vulnerable DVRs to the net.

Start your day with Reason. Get a daily brief of the most important stories and trends every weekday morning when you subscribe to Reason Roundup.

NEXT: The DEA Wants to Access Your Medical Records Without Consent or a Warrant

Hide Comments (1)

Editor's Note: As of February 29, 2024, commenting privileges on reason.com posts are limited to Reason Plus subscribers. Past commenters are grandfathered in for a temporary period. Subscribe here to preserve your ability to comment. Your Reason Plus subscription also gives you an ad-free version of reason.com, along with full access to the digital edition and archives of Reason magazine. We request that comments be civil and on-topic. We do not moderate or assume any responsibility for comments, which are owned by the readers who post them. Comments do not represent the views of reason.com or Reason Foundation. We reserve the right to delete any comment and ban commenters for any reason at any time. Comments may only be edited within 5 minutes of posting. Report abuses.

Lincoln 12 years ago

Of course CCTV is highly vulnerable. If you don't make it super easy, security and police are generally too incompetent do delete evidence of their own wrongdoing.

Please log in to post comments

Many Surveillance Cameras Are Easily Hacked

As in, no security measures to speak of

Latest

The Supreme Court Is About To Hear 2 Education Cases. Neither Goes Far Enough.

Trump Wants Lower Egg Prices. He's Also Putting Tariffs on Imported Eggs.

Don't Fear the Bird Flu When Dyeing Easter Eggs

Not Guilty but Punished Anyway

Marco Rubio Brags About Defending Freedom of Speech While Eagerly Undermining It

Recommended

Login Form