back to article HACKERS can DELETE SURVEILLANCE DVRS remotely – report

DVR systems from Hikvision have vulnerabilities that open the door to hacking, security researchers have warned. Digital Video Recorders (AKA Network Video Recorders), such as those from the likes of Hikvision, are used to record surveillance footage of office buildings and surrounding areas. However, the range of …

  1. Anonymous Coward
    Anonymous Coward

    Hope the hackers didn't see me yesterday...

    ..trying to wrestle a Twix out of the vending machine...very embarassing.

  2. Anonymous Coward
    Anonymous Coward

    Not surprising...

    I have seen a number of cheapo CCTV systems. Often picked up from some random Chinese source by the "son" of the owner of the business. Installed by that same person. And then just left running...

    Every one of these I have seen has had the default passwords still in place. These are are of course those oh so secure choices like 1234 or password.

    Staff rarely know how they work - a lot of the time they don't even know how to review the recorded footage. But then if you were a low paid restaurant employee would you really care?

    I am amazed more of these systems don't get hacked.

  3. Khaptain Silver badge

    Pentagon CCTV

    Is this why we never saw the 757 striking the Pentagon ? Maybe someone had hacked all of the CCTVs except the one whose footage was shown.

    No more plausible than the simpletons story that they came up with....

    1. Anonymous Coward
      Anonymous Coward

      Re: Pentagon CCTV

      There are photographs of the plane just before impact...

  4. Bucky 2

    Old News

    I saw a similar exploit performed in a documentary entitled "Ocean's Eleven."

    1. Anonymous Coward
      Anonymous Coward

      Re: Old News

      v1 or v2?

  5. Version 1.0 Silver badge

    The plus side of hacking

    I saw a case some years ago where a system was hacked and then remotely upgraded because it was so old that the code they loaded initially wouldn't run.

    The problem with "utility" devices is that the manufacturers never bother to update the OS so backdoors and the like never get fixed. You want that backdoor fixed son? Buy a new one.

  6. Zacherynuk

    A bunch of cheap China Cams bought on ebay recently not only had dodgy ActiveX controls (something I am used to - So always initially re-rlash them and configure them within a secured snapshoted VM) but also included P2P firmware which essentially, by default, broadcasts the camera on teh inter webs! (all you need to know is the device ID - which the seller invariably will.

    I noticed several IP cams on ebay where the seller is actually asking the buyer NOT to upgrade the firmware!

    I use IP cams for rudimentary external security - they are on a separately fire-walled VLAN, do not have internet access and stream to a synology box (via Onvif) which is only accessible externally via VPN.

  7. chris lively

    "Hik"vision - I think I see the problem already. Maybe Uncle Jed is too busy drinking moonshine and shooting at trees to rustle up better code.

  8. Grease Monkey Silver badge

    Connecting your security DVR to the internet is beyond foolish.

    1. Fatman

      RE: Connecting your security DVR to the internet is beyond foolish.

      How else are you supposed to do lights out management on a shoestring budget???

      You know, do MORE with LESS!!!!!

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like