![\"dvr\"](\"https:\/\/www.een.com\/wp-content\/uploads\/2016\/09\/DVR-300x156.png\")
<\/figure><\/div>\n\n\n\nAttackers used hijacked security cameras and DVRs to launch several massive Internet attacks prompting fresh concern about the vulnerability of devices connected to the Internet. According to Level3, of the identifiable devices participating in these attacks, almost 96 percent were IoT devices, of which 95 percent were cameras and DVRs.<\/p>\n\n\n\n
Security camera DVRs often come configured with telnet and web interfaces enabled, allowing users to configure the devices and view their security footage over the Internet making them vulnerable to attacks. This compromise can be used by hackers to get access to the customers\u2019 local network and obtain sensitive corporate information, which is a potentially dangerous liability for the Reseller or VAR. In order to patch or upgrade these DVRs they will have to be manually upgraded or replaced.<\/p>\n\n\n\n
Checking DVRs to determine if they have been compromised and fixing them can be extremely complex and difficult. Not all vendors provide firmware updates. Updating the firmware, furthermore, will only clean up an infection in some circumstances. A factory reset, if provided, may clear up the infection, but again only in a small percentage of circumstances.<\/p>\n\n\n\n
![\"barracuda-clip\"](\"https:\/\/www.een.com\/wp-content\/uploads\/2016\/10\/barracuda-clip-300x94.gif\")
<\/a><\/figure><\/div>\n\n\n\nDetecting and determining if a DVR is comprised can be accomplished with some network investigation or the application of security appliances that analyze all the Internet traffic. The Barracuda Web Security Gateway<\/a> is one such product, but an expert can do it with more primitive tools as well. There is no easy answer to determine if a DVR is compromised if the vendor does not provide a solution on their website.<\/p>\n\n\n\n Details<\/strong>: Lessons<\/strong>: The Eagle Eye Cloud Security Camera VMS<\/a> separates the cameras from the Internet onto an isolated, protected network so they can\u2019t be compromised or used maliciously. \u00a0Furthermore, the Eagle Eye Bridges<\/a> are actively managed devices, which get firmware updates without having to send someone on site.\u00a0 This allows security patches and general updates to be deployed in a timely manner.<\/p>\n\n\n\n Detailed Information<\/strong>: Several articles, including one by the Wall Street Journal, have recently reported that approximately 145,000 hacked DVRs and cameras were used to create some of the largest denial of service …<\/p>\n![\"mirai-hf-940x377\"](\"https:\/\/www.een.com\/wp-content\/uploads\/2016\/09\/mirai-hf-940x377-300x120.png\")
The infection that was identified was labeled \u201cMIRAI\u201d. The MIRAI code has built into it a large number of default cameras and DVR passwords. If you are using DVR\u2019s from one of these manufacturers<\/a> and didn\u2019t change the passwords it is likely that you are infected. If you recognize these passwords you are probably in trouble as well. These DVR\u2019s are sold under many different brands.<\/p>\n\n\n\n
1) Don\u2019t put DVRs or cameras directly on the Internet.
2) Do not open inbound ports to DVRs, NVRs or VMSs to the Internet – even with a firewall. A firewall would not protect against these attacks.<\/p>\n\n\n\n
http:\/\/blog.level3.com\/
http:\/\/www.wsj.com\/articles\/
http:\/\/arstechnica.com\/
http:\/\/arstechnica.com\/
https:\/\/blog.sucuri.net\/2016\/
<\/a>https:\/\/krebsonsecurity.com\/2016\/10\/who-makes-the-iot-things-under-attack<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"