Backdoor found in Hikvision cameras

jfyi, I plan to disclose all details of the backdoor when 6 months pass, which will be the second week of September. Updates are available and 6 months is more than enough time to apply them. There are, however, hundreds of thousands of cameras accessible via the Internet that still contain the backdoor.
 
  • Like
Reactions: marku2
montecrypto said:
jfyi, I plan to disclose all details of the backdoor when 6 months pass, which will be the second week of September. Updates are available and 6 months is more than enough time to apply them. There are, however, hundreds of thousands of cameras accessible via the Internet that still contain the backdoor.
Click to expand...

so the 5.4.41 works?
 
alastairstevenson said:
Unless you've bought from eBay or Aliexpress and want to avoid a bricked camera.
Maybe it's time to openly publish the 'enhanced mtd hack' that gives a fully upgradable (R0 series) camera.
Click to expand...

or they can learn chinese and flash them to chinese version. That will be much more easy and also they work for every single series.
 
dealpapa said:
or they can learn chinese and flash them to chinese version. That will be much more easy and also they work for every single series.
Click to expand...

As someone else pointed out on this, or another thread, you can still use the english batch configuration tool to configure a chinese camera.
 
Tolting Colt Acres said:
As someone else pointed out on this, or another thread, you can still use the english batch configuration tool to configure a chinese camera.
Click to expand...
Tolting Colt Acres said:
As someone else pointed out on this, or another thread, you can still use the english batch configuration tool to configure a chinese camera.
Click to expand...
the problem is ivms-4200 and nvr will need to be chinese too.
 
I had a locked-english chinese camera (until alastair was kind enough to walk me through the process of making it english upgradable) which I downgraded and reverted back to chinese for a while, neither ivms-4200 nor blueiris (my NVR) cared it was Chinese.
 
  • Like
Reactions: marku2
montecrypto said:
jfyi, I plan to disclose all details of the backdoor when 6 months pass, which will be the second week of September. Updates are available and 6 months is more than enough time to apply them. There are, however, hundreds of thousands of cameras accessible via the Internet that still contain the backdoor.
Click to expand...
Is there a work around apart from updating to the latest firmware?
I have a batch still on 5.16 that I'm hesitant to upgrade...
 
Thank you, Hik has never been very clear on "details" and I can't remember if 5.16 was an official release or not.
FWIW, they are inaccessible from the internet other than when I remote in through another computer on the network.
 
montecrypto said:
jfyi, I plan to disclose all details of the backdoor when 6 months pass, which will be the second week of September. Updates are available and 6 months is more than enough time to apply them. There are, however, hundreds of thousands of cameras accessible via the Internet that still contain the backdoor.
Click to expand...
Dahua had more than one million when I released info about their backdoor, bad to say that didn't even help, maybe 700k are still vulnerable today for same thing, but at least many security companies do know about this and can catch the things with IPS.
 
  • Like
Reactions: whoslooking
2nd week of September, back door access using ivm-4200
 
You must log in or register to reply here.
Top Bottom