Security Cameras May Cause Security Troubles Due To These Serious Vulnerabilities

Latest findings

• In total, around 3.5 million vulnerable security cameras developed by 47 different brands, that are currently used in homes and offices, were found vulnerable.
• The use of a protocol called iLnkP2P, by hundreds of other brands, made devices vulnerable to two flaws (CVE-2019-11219 and CVE-2019-11220), and difficult to be identified.
• Accessing the security cameras using the CamHi app could expose the device owners to attackers.
• The flaws were tested and verified in the security cameras by five OEM brands Accfly, Elite Security, Genbolt, ieGeek, and SV3C. It also impacted more than 30 additional brands, including Alptop, Besdersec, COOAU, CPVAN, Ctronics, etc.

Security issues with unsecured cameras

• In December 2019, unknown hackers had hacked the security camera system at Lang Suan Prison in the southern province of Chumphon, exposing the prison’s internal environment on the internet.
• In the same month, hackers compromised login credentials for 3,672 Ring camera owners and exposed their personal information online.
• In October 2019, security cameras used in the aviation industry were found to be vulnerable to attacks wherein hackers were able to recover private encryption keys.

Stay safe