So, shall we play a game of "Accidental or intentional"? Was it incompetence or malice? Unfortunately, the end result is much the same for the consumer.
414,949 D-Link cameras, IoT devices can be hijacked over the net
Shodan has turned up half a million D-Link devices exposed to the internet, and subject to easy hijacking using zero-day vulnerabilities. The stack overflow vulnerabilities affect more than 120 D-Link products, from Wi-Fi cameras to routers and modems, and allow remote attackers to completely hijack the administer account of …
COMMENTS
-
-
Sunday 10th July 2016 02:21 GMT JohnG
Re: Your wifi cam is not directly accessible from the internet
"These devices (and I have some myself) are behind firewalls -- so they are not that easy to access unless you are already on the wifi where the device is running."
And the punter follows the manufacturer's instructions so that he or she can view their baby/pet/nanny from work and bob's your uncle, their webcam is exposed to the Internet.
-
Friday 8th July 2016 12:56 GMT Justicesays
Sad that
PC world seems to have more technical information on this issue than this article gives.
http://www.pcworld.com/article/3092868/code-reuse-exposes-over-120-d-link-devices-models-to-hacking.html
According to that it's the dcp service, which enables the "mydlink" cloud functionality.
Listens on port 5978 for those that want to configure their firewalls appropriately.
-
Friday 8th July 2016 19:48 GMT energystar
Embedded Effort never conceived as NETWORKED.
"Senrio researchers warn of what they describe as the "laughable state" of embedded device security"
The Embedded Effort never conceived as NETWORKED. These are 'sweet monetization dreams' over once upon a time -reasonable Engineering. Ambition?