Malwarebytes

SEPTEMBER 22, 2021

In a detailed post on Github , security researcher Watchful_IP describes how he found that the majority of the recent camera product ranges of Hikvision cameras are susceptible to a critical, unauthenticated, remote code execution (RCE) vulnerability, even with the latest firmware. Hangzhou Hikvision Digital Technology Co., Mitigation.

Firmware 144

Firmware Surveillance Marketing VPN 144

Security Affairs

OCTOBER 4, 2023

Google Threat Analysis Group and Google Project Zero experts focus on attacks carried out by nation-state actors or surveillance firms, this means that one of these threat actors may be behind the exploitation of the Qualcomm flaws. Please contact your device manufacturer for more information on the patch status about specific devices.”

Firmware 123

Firmware Surveillance Authentication Manufacturing 123

Security Boulevard

MARCH 3, 2025

Surveillance Tech in the News This section covers surveillance technology and methods in the news. The surveillance tech waiting for workers as they return to the office ArsTechnica RTO continues to pick up steam. In pursuit of "more productivity," some employers are leaning heavily into surveillance tech.

Surveillance 52

Surveillance Data breaches Firmware Encryption 52

Security Boulevard

MARCH 17, 2025

Surveillance Tech in the News This section covers surveillance technology and methods in the news. Vulnerabilities and Malware Primarily includes severe and exploited vulnerabilities in devices or software used by end users (ex: a major router firmware flaw). Malware campaigns covered generally target/affect the end user.

Surveillance 59

Surveillance Data breaches Spyware Malware 59

Security Affairs

JUNE 12, 2022

The flaws impact products manufactured by LenelS2, a provider of advanced physical security solutions (i.e. access control, video surveillance and mobile credentialing) owned by HVAC giant Carrier. The experts focused on Carrier’s LenelS2 access control panels, manufactured by HID Mercury. Overall 4.8.

Firmware 108

Firmware Penetration Testing Manufacturing Authentication 108

CyberSecurity Insiders

JUNE 29, 2021

Security researchers say that the flaw is related to software component used in cloud surveillance platform ThroughTek that is used by OEMs while manufacturing IP Cameras, baby monitoring cams and pet monitoring solutions along with robotic and battery devices. score to the newly discovered P2P SDK vulnerability.

Firmware 85

Firmware IoT Surveillance Manufacturing 85

SecureList

JUNE 20, 2023

The findings of the study reveal a number of serious security issues, including the use of hard-coded credentials, and an insecure firmware update process. We later managed to extract the firmware from the EEPROM for further static reverse engineering. Further hardware analysis of the circuit board helped us identify chips.

Firmware 107

Firmware Passwords Manufacturing Mobile 107

Security Affairs

JULY 25, 2018

AVTech is one of the world’s leading CCTV manufacturers, it is the largest public-listed company in the Taiwan surveillance industry. EliteLands is using a 2-years old exploit that could be used to trigger tens of well-known vulnerabilities in the AVTech firmware.

Firmware 69

Firmware Passwords Advertising IoT 69

eSecurity Planet

SEPTEMBER 9, 2024

Industrial control systems (ICS) are the backbone of critical infrastructure, powering essential operations in the energy, manufacturing, water treatment, and transportation sectors. These systems are integral to the smooth operation of industries such as manufacturing, power generation, oil and gas, water management, and more.

Firmware 111

Firmware Encryption Manufacturing Risk 111

The Security Ledger

DECEMBER 19, 2023

Security researcher and IoT hacker Dennis Giese talks about his mission to liberate robot vacuums from the control of their manufacturers, letting owners tinker with their own devices and - importantly - control the data they collect about our most intimate surroundings. The post Episode 254: Dennis Giese’s Revolutionary Robot Vacuum.

IoT 75

IoT Internet Internet Manufacturing 75

SecureList

SEPTEMBER 21, 2023

As if that were not enough, many IoT devices have unalterable main passwords set by manufacturers. Although the manufacturer issued an update that resolved the vulnerability, similar attacks remain a concern. Unfortunately, users tend to leave these passwords unchanged. BTC to recover the data.

IoT 133

IoT DDOS Passwords Malware 133

SecureList

APRIL 27, 2022

Another victim in which the same chain was exhibited is a computer game manufacturer in Cambodia, where the attack could have been used for a different purpose, possibly to infiltrate the company’s supply chain. In December we were made aware of a UEFI firmware-level compromise through logs from our firmware scanning technology.

Malware 145

Malware Firmware Government Phishing 145

Pen Test

OCTOBER 12, 2023

Criminals may use hijacked drones for illegal surveillance, smuggling, or even as weapons. Countermeasures: To prevent drone signal hijacking, drone manufacturers and operators can implement encryption and authentication mechanisms for RF communication. Keeping firmware up to date is essential for security.

Encryption 52

Encryption Firmware Surveillance Technology 52

Security Affairs

OCTOBER 10, 2018

Millions of Xiongmai video surveillance devices can be easily hacked via cloud feature, a gift for APT groups and cyber crime syndicates. The flaws reside in a feature named the “XMEye P2P Cloud” that is enabled by default which is used to connect surveillance devices to the cloud infrastructure. Pierluigi Paganini.

Surveillance 108

Surveillance Hacking Firmware Manufacturing 108

ForAllSecure

APRIL 22, 2021

Vamosi: This is really the problem with IoT, the appeal to the lowest common denominator device manufacturers, particularly startups are reaching for what already exists, rather than designing something new, in part because they want their cool new toothbrush to incorporate with what's already out there today. How do you do that.

IoT 52

IoT Hacking Internet Internet 52

ForAllSecure

APRIL 22, 2021

Vamosi: This is really the problem with IoT, the appeal to the lowest common denominator device manufacturers, particularly startups are reaching for what already exists, rather than designing something new, in part because they want their cool new toothbrush to incorporate with what's already out there today. How do you do that.

IoT 52

IoT Hacking Internet Internet 52

The Security Ledger

NOVEMBER 11, 2019

» Related Stories From China with Love: New York Firm sold millions in PRC Surveillance Gear to US Government, Military Episode 165: Oh, Canada! Terry is a former NSA employee who specializes in firmware security. We're joined by Terry Dunlap the co-founder of ReFirm Labs to talk about why software supply chain risks.

Risk 40

Risk Surveillance Firmware Technology 40