Hikvision – Computer Security Articles

A week in security (August 22 – August 28)

August 29, 2022 admin binance, chromeos, cisa, cryptojackers, gitlab, google, Hikvision, lastpass, news, patch management, plex, Reddit, Social engineering, trickbot, Twitter

Categories: News

Tags: cryptojackers

Tags: CISA

Tags: Reddit

Tags: social engineering

Tags: Google

Tags: PLex

Tags: Hikvision

Tags: patch management

Tags: ChromeOS

Tags: Twitter

Tags: Binance

Tags: Gitlab

Tags: TrickBot

Tags: LastPass

The important security news of this week

(Read more…)

The post A week in security (August 22 – August 28) appeared first on Malwarebytes Labs.

MalwareBytes Security

Thousands of Hikvision video cameras remain unpatched and vulnerable to takeover

August 23, 2022 admin cve-2021-36260, Hikvision, metasploit, Mirai, moobot, news

Categories: News

Tags: Hikvision

Tags: CVE-2021-36260

Tags: metasploit

Tags: Mirai

Tags: Moobot

Tags:

A patch has been available since September 2021, yet tens of thousands of systems used by 2,300 organizations across 100 countries have still not applied the security update.

Independent Krebs

Dahua, Hikvision IoT Devices Under Siege

March 10, 2017 admin Amit Serper, bashis, Cybereason, Dahua backdoor, DH-IPC-HDBW13A0SN, DH-IPC-HDBW23A0RN-ZS, DH-IPC-HDW13A0SN, DH-IPC-HDW23A0RN-ZS, DH-IPC-HFW13A0SN-W, Hikvision, Other, P2P, UPnP

Credit to Author: BrianKrebs| Date: Fri, 10 Mar 2017 20:07:51 +0000

Dahua, the world’s second-largest maker of “Internet of Things” devices like security cameras and digital video recorders (DVRs), has shipped a software update that closes a gaping security hole in a broad swath of its products. The vulnerability allows anyone to bypass the login process for these devices and gain remote, direct control over vulnerable systems. Adding urgency to the situation, there is now code available online that allows anyone to exploit this bug and commandeer a large number of IoT devices.