Ok. I'd like to make another point though.. If there's (as you say) reason to believe that there are so many vulnerable cameras out there still - and especially if the cameras are being attacked - should Hikvision not issue a public warning about it? As far as I can tell the company hasn't said anything about the disclosure yet. If Hikvision doesn't think there's a reason for anyone to be alarmed about how Montecrypto handled his discovery then why should you worry about it?I wrote some time ago to Hik an email with this - not so well documented and forgot about that. As you see in my earlier posts here i was trying to repack firmware for special requirement. After i signed NDA i couldnt help more here. Nevermind, this is not the proper way of reporting an issue.
They have - and have been embarrassed to receive from ICS-CERT a perfect 10 out of 10 vulnerability score for their backdoor, and an 8.8 out of 10 score for putting plaintext passwords in a configuration file which can be extracted without requiring authorisation.should Hikvision not issue a public warning about it?
Those are the original statements from March and May.They have
You should be thanking Montecrypto then. Its good for business. Think of all those service calls you'll be billing customers for.Same here.. I am installer and received about 50 complains last 2 days. Some camera's factory reset ( inactive ) some ip adresses changed out of the range.. Couldnt be coinsidence knew it.
Ive had this exact problem for the last 3 days with two of my 6 hikvision cameras. They would reset to factory defaults at random times, but always within 2 minutes of each other. Roughly once a day.the camera ITSELF reseted to factory default.
These cameras arrive with upnp enabled...as soon as you plunged them in they punched a hole in your firewall, disabling upnp after the fact does not help...double check your settings and ensure no ports are forwarded...Ive had this exact problem for the last 3 days with two of my 6 hikvision cameras. They would reset to factory defaults at random times, but always within 2 minutes of each other. Roughly once a day.
Both are behind a firewall and part of a Synology camera system.
Disabling upnp, cloud settings, etc makes no difference.
I've just rebooted my internet router (Draytek) to see if that changes things - since I'll then get a new public up address.
I have no port forwarding active.
Any ideas?
Richard
Yes that makes sense.These cameras arrive with upnp enabled...as soon as you plunged them in they punched a hole in your firewall, disabling upnp after the fact does not help...double check your settings and ensure no ports are forwarded...
Also - the implication would be that uPnP is also enabled on the router, that would then allow any device on the LAN to configure port forwarding.These cameras arrive with upnp enabled...as soon as you plunged them in they punched a hole in your firewall, disabling upnp after the fact does not help...double check your settings and ensure no ports are forwarded...
What model of camera, what firmware?cannot upgrade the cam because of chinese hacked version.
Apologize for the stupid question / I'm not very familiar with Hikvision/ How do I know which camera the platform is R0,R1 and etc.../my Chinese models is- DS-2CD3210, DS=2CD3212/. To what version can I update these old Chinese models / TO TURN OFF THE PROBLEMS WITH THE SECURITY SURVEYS /, some of them are with versions 5.1.0 and 5.3.0.Generally, installing new firmware on CN cameras will either brick them (EN/ML firmware) or result in CN menus and 'language mismatch' problems (CN firmware) with the NVR.
The solution for full updating of CN camera that may have been 'hacked to English' can be discovered here : Hikvision DS-2CD2x32-I (R0) brick-fix tool / full upgrade method / fixup roundup.
Neither of those cameras are R0I realized that my platform is R0 and that the last firmware for it is 5.4.0 / if I'm not mistaken
This is an R2 series camera.DS-2CD3210
This is a Chinese camera, but probably R0 internals apart from the language setting.DS=2CD3212