Jump to content
Security Installer Community

Cheap Dvr Leaves Your Network Vulnerable To Attack

cybergibbons

By cybergibbons
in Members Lounge (Public)

 Share

Recommended Posts

cybergibbons Newbie

cybergibbons

Posted
Posted

I looked at a cheap DVR and found some really quite serious issues. If you port-forward to this, an attacker - and not a skilled one - can take complete control of the device and do what they want on your network.

 

https://www.pentestpartners.com/blog/pwning-cctv-cameras/

 

I wouldn't trust any DVR to be honest.

 

Expect more like this in the near future.

I have a blog, some of which is about alarm security and reverse engineering:
http://cybergibbons.com/

 

 

 

cybergibbons Newbie

cybergibbons

Posted
  • Author
Posted

Even if secure passwords are setup?

 

There's absolutely no requirement to use a password on this. I can make it connect back to my server and control it just by entering a URL on it.

Or I could get you to visit a site with the URL on it.

I have a blog, some of which is about alarm security and reverse engineering:
http://cybergibbons.com/

 

 

 

Adi Enthusiast

Adi

Posted
Posted

I looked at a cheap DVR and found some really quite serious issues. If you port-forward to this, an attacker - and not a skilled one - can take complete control of the device and do what they want on your network.

 

https://www.pentestpartners.com/blog/pwning-cctv-cameras/

 

I wouldn't trust any DVR to be honest.

 

Expect more like this in the near future.

 

 

Interesting read.

I really can't be ar**** with it anymore.

Adi Enthusiast

Adi

Posted
Posted

The way i read it doesnt.

 

It seemed to me you need a fire wall for outgoing stuff to have any chance of helping the matter.

I really can't be ar**** with it anymore.

cybergibbons Newbie

cybergibbons

Posted
  • Author
Posted

Not even if its on a vpn or vlan?

 

If you are very strict about it, then it can be safe.

When you are on the VPN connecting to the DVR, you must not browse any other sites, otherwise the attack could be carried out against it.

All outbound access from the DVR needs to be blocked.

I have a blog, some of which is about alarm security and reverse engineering:
http://cybergibbons.com/

 

 

 

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.


×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use.

  I accept