Menu
What's new

New massive security whole in many dahua devices (ip-cam,vdp,...)!

wittaj

wittaj

IPCT Contributor
Joined
Apr 28, 2019
Messages
25,028
Reaction score
48,794
Location
USA
One of the many reasons why we say to isolate the cameras from the internet and never port forward, UPnP, P2P, etc...

It is ironic that security cameras have some of the worse internet security in them LOL....
 
E

eggzlot

Getting the hang of it
Joined
Jun 23, 2015
Messages
113
Reaction score
27
Quick question - back in 2018 I purchased a few Dahua cameras from Empire Andy based on this forum's help. I noticed one of the cameras falls into this latest security bulletin. When I click into the camera and go to update the firmware via a manual check it says it has the latest firmware (dated 2018). On the Dahua website there is a ton of additional firmware files relevant to this series of camera - SD1A1. Should I download something from the Dahua site, or just let it go because maybe these are gray market with different firmware?
 
wittaj

wittaj

IPCT Contributor
Joined
Apr 28, 2019
Messages
25,028
Reaction score
48,794
Location
USA
eggzlot said:
Quick question - back in 2018 I purchased a few Dahua cameras from Empire Andy based on this forum's help. I noticed one of the cameras falls into this latest security bulletin. When I click into the camera and go to update the firmware via a manual check it says it has the latest firmware (dated 2018). On the Dahua website there is a ton of additional firmware files relevant to this series of camera - SD1A1. Should I download something from the Dahua site, or just let it go because maybe these are gray market with different firmware?
Click to expand...
These cameras can be updated with stuff on Dahua website, but if your camera is isolated from the internet, then there is no need to update it.

But to be safe, I would search this forum for the latest firmware on that camera that Andy posted.
 
E

eggzlot

Getting the hang of it
Joined
Jun 23, 2015
Messages
113
Reaction score
27
wittaj said:
These cameras can be updated with stuff on Dahua website, but if your camera is isolated from the internet, then there is no need to update it.

But to be safe, I would search this forum for the latest firmware on that camera that Andy posted.
Click to expand...
Thanks - I don't port forward if that is what you mean. I use Blue Iris to view the cameras. UPnP is off. I don't see a P2P option. Anything else I should look at?
 
wittaj

wittaj

IPCT Contributor
Joined
Apr 28, 2019
Messages
25,028
Reaction score
48,794
Location
USA
Are your cameras on a different IP address like a dual NIC or VLANs?
 
wittaj

wittaj

IPCT Contributor
Joined
Apr 28, 2019
Messages
25,028
Reaction score
48,794
Location
USA
What about the rest of your internet? Is every device at home on the same 10.x.x.x. scheme and do the cameras go thru the router?

If so, you could do the child protect in the router to prevent them from accessing the internet.
 
E

eggzlot

Getting the hang of it
Joined
Jun 23, 2015
Messages
113
Reaction score
27
wittaj said:
What about the rest of your internet? Is every device at home on the same 10.x.x.x. scheme and do the cameras go thru the router?

If so, you could do the child protect in the router to prevent them from accessing the internet.
Click to expand...
Yes all devices 10.x.x.x scheme and cameras go through the my PoE switch which is plugged into my Mikrotik router. I can look at those settings (its like a foreign language) to see if I can do some sort of prevention from accessing the internet.
 
looney2ns

looney2ns

IPCT Contributor
Joined
Sep 25, 2016
Messages
15,634
Reaction score
22,891
Location
Evansville, In. USA
eggzlot said:
Quick question - back in 2018 I purchased a few Dahua cameras from Empire Andy based on this forum's help. I noticed one of the cameras falls into this latest security bulletin. When I click into the camera and go to update the firmware via a manual check it says it has the latest firmware (dated 2018). On the Dahua website there is a ton of additional firmware files relevant to this series of camera - SD1A1. Should I download something from the Dahua site, or just let it go because maybe these are gray market with different firmware?
Click to expand...
How to Secure Your Network (Don't Get Hacked!) | IP Cam Talk
 
sdkid

sdkid

IPCT+ Member
Joined
Dec 6, 2014
Messages
3,646
Reaction score
15,106
Location
South Dakota
eggzlot said:
Thanks all - I have UPnP off, Port Forwarding off and I don't use a VPN but as mentioned I use Blue Iris. I'll update the firmware from Andy as listed above too just to be safe.
Click to expand...
When you say you use BI --- you mean when you are at home on your LAN-- right? If you are viewing it away from home, then you have your network open and vulnerable to the outside. You need some kind of VPN for encrypted access to your LAN when you are away from home.
 
E

eggzlot

Getting the hang of it
Joined
Jun 23, 2015
Messages
113
Reaction score
27
sdkid said:
When you say you use BI --- you mean when you are at home on your LAN-- right? If you are viewing it away from home, then you have your network open and vulnerable to the outside. You need some kind of VPN for encrypted access to your LAN when you are away from home.
Click to expand...
I am using BI remotely via their encryption at or at least I assumed (maybe incorrectly) that there was some level of encryption/security on the end of BI. I do have a VPN that I use for other tasks, I guess I could not let BI speak to the outside world and just turn on my VPN then open the BI app.
 
You must log in or register to reply here.
Top