The DVR boxes used to manage recording from security cameras may not actually be so secure. A hacker at Console Cowboys found that the Ray Sharp platform used by many companies' DVRs — the author lists Swann, KGuard Security, and more — is vulnerable to unauthorized access, even from behind a firewall. "SomeLuser" found that the platform is set to automatically enable Universal Plug n Play, making it easily accessible through networks that support it. Connecting through Port 9000 allowed users to bypass security, then request the username and password for the DVR in plain text. From there, it's possible to exploit more loopholes to run system commands, accessing or deleting footage. That could make it one of several standard business...
via The Verge - All Posts http://www.theverge.com/2013/1/28/3925338/security-camera-recorder-vulnerabilities-could-allow-tampering
No comments:
Post a Comment