https://www.hackread.com/mirai-botnet-hacks-surveillance-camera-in-98-secs/
This article reports how Mirai botnet got access to security camera. The security of networked security cameras needs to be improved – the devices with default password can get hacked faster than you can find how to change the password!
2 Comments
Tomi Engdahl says:
More information on Mirai botnet can be found at
http://www.epanorama.net/newepa/2016/10/03/meet-linux-mirai-trojan-a-ddos-nightmare/
Tomi Engdahl says:
Firm Responsible For Mirai-Infected Webcams Hires Software Firm To Make Its Products More Secure
https://it.slashdot.org/story/17/06/16/2151221/firm-responsible-for-mirai-infected-webcams-hires-software-firm-to-make-its-products-more-secure
After seeding the globe with hackable DVRs and webcams, Zhejiang Dahua Technology Co., Ltd. of Hangzhou, China will be working with the U.S. firm Synopsys to “enhance the security of its Internet of Things (IoT) devices and solutions.” Dahua, based in Hangzhou, China said it will with Mountain View based Synopsys to “enhance the security of its Internet of Things (IoT) devices and solutions.” In a joint statement, the companies said Dahua will be adopting secure “software development life cycle (SDLC) and supply chain” practices using Synopsys technologies in an effort to reduce the number of “vulnerabilities that can jeopardize our products,”
Firm That Made Mirai-Infected Webcams Gets Security Religion
https://securityledger.com/2017/06/firm-that-made-mirai-infected-webcams-gets-security-religion/
In-brief: After seeding the globe with hackable DVRs and webcams, Zhejiang Dahua Technology Co., Ltd. of Hangzhou, China will be working with the U.S. firm Synopsys to “enhance the security of its Internet of Things (IoT) devices and solutions.”
The surveillance camera maker whose name became synonymous with insecure, connected devices after its cameras formed the backbone of the Mirai botnet has hired a top secure software development and testing firm to makes its products less prone to hacking.
Dahua’s cameras and digital video recorders (DVRs) figured prominently in the Mirai botnet, which launched massive denial of service attacks against websites in Europe and the U.S., including the French web hosting firm OVH, security news site Krebsonsecurity.com and the New Hampshire based managed DNS provider Dyn. Cybercriminals behind the botnet apparently exploited an overflow vulnerability in the web interface for cameras and DVRs to gain access to the underlying Linux operating system and install the Mirai software, according to research by the firm Level3.