Accurate, Focused Research on Law, Technology and Knowledge Discovery Since 2002

Researcher says Backdoor mechanism still active in many IoT products

ZDNet: “Russian security researcher Vladislav Yarmak has published today details about a backdoor mechanism he discovered in Xiongmai firmware, used by millions of smart devices across the globe, such as security cameras, DVRs, NVRs, and others. A firmware fix is not currently available as Yarmak did not report the issue to the company, citing a lack of trust in the vendor to properly fix the issue. In a detailed technical rundown that Yarmak published on Habr earlier today, the security researcher says the backdoor mechanism is a mash-up of four older security bugs/backdoors that were initially discovered and made public in March 2013, March 2017, July 2017, and September 2017 — and which the vendor failed to adequately fix…”

See also – Huawei Security Notice – Technical Analysis Report on the Suspected Security Issue of HiSilicon Video Surveillance Chips Reported by Some Media

Sorry, comments are closed for this post.