Security24.03.2016

Massive security flaw in CCTV systems

By Staff Writer

The digital video recording (DVR) devices in the CCTV systems of over 70 different vendors have inherited a security flaw from the original manufacturer, TVT.

This is according to security researcher Rotem Kerner, who was following up on 2014 research into the Backoff POS Trojan operation.

Researchers found that criminals used vulnerable DVR boxes as a vector from which to attack point-of-sale systems.

Kerner said after a query on Shodan, he found more than 30,000 potentially-vulnerable DVRs connected to the Internet.

He then explored one of the DVRs and found a way to exploit a vulnerability to allow him to execute any program on the device.

TVT, which is based in China, ignored Kerner’s reports of the bug, so he publicly disclosed the issue.

“Your best shot would probably be to deny any connection from an unknown IP address to the DVR services,” said Kerner.

A list of affected vendors is available in Kerner’s blog post.

Dramatic CCTV footage of robbers trying to break into Crime Line head’s home

Multi-million rand CCTV system takes on crime in Joburg

Show comments

Forum discussion

Massive security flaw in CCTV systems

Latest news

Nedbank warning to people with smartphones in South Africa

South African crypto asset platform launches tokenised Krugerrands

Why uncapped mobile data breaks South African networks

What’s Next with Aki Anastasiou – South Africa’s top tech podcast hits 7 million views

Netflix winning in tariff turmoil

Big legal blow for Google

SYSPRO appoints Leanne Taylor as Chief Revenue Officer to drive global growth and digital transformation

Vodacom looks ready for a comeback

Mpumalanga Department of Education pays R2 million for 22 laptops

More news

Good news for South African drivers who want electric in the city and petrol on road trips

Man arrested with 554 cellphones in South Africa worth R2.5 million

People are saying goodbye to cash in South Africa

Welcome to a new era for SMS marketing

Price changes at major fibre network operator revealed

Vodacom supports Starlink being blocked in South Africa because of BEE

Samsung’s innovations redefine picture quality standards

South Africa’s favourite electric car lie

Drones taking off in South Africa

Trending news

Amazon making Takealot and South African online stores sweat

South African data centre industry evolving

Easter scam warnings for South Africans

SKYWORTH 408 & Easter Campaign – Get a R1,000 voucher and the chance to win a full cashback

What’s Next — Nomvuyiso Batyi and Naveed Kashif discuss the challenge of expanding RAN infrastructure in Africa

ChatGPT gets new AI coding model

Harmony Clinic – South Africa’s premier destination for holistic addiction recovery

Spam call loophole in South Africa

South Africa hit by solar storm

Industry News

Is Forex trading a smart way to make money in South Africa? A tech and finance perspective

The South African software development company that does things right

Define your company’s technological edge with payroll automation

TCL Achieves Triple Top 1 Rankings in Global TV Shipments Across Key Categories

Reduce your network operation costs with Iris Network Systems

Poll

More on CCTV systems

Latest news

More news

Trending news

Industry News

Poll