Security flaw made 175,000 IoT cameras vulnerable to becoming spy cams for hackers
Some 175,000 Internet of Things (IoT) connected security cameras are vulnerable to hacks that would allow cybercriminals to enter a user’s network, spy on the owner, or become part of a malicious botnet, according to a new report from security provider Bitdefender.
The cameras are manufactured by Shenzhen Neo Electronics, a Chinese company that provides surveillance and security solutions such as sensors, alarms, and IP cameras.
Researchers found several buffer overflow vulnerabilities present in two cameras studied: The iDoorbell model, and the NIP-22 model. However, it’s likely that all cameras sold by the company use the same software, and are also vulnerable, the report noted.
“These vulnerabilities could allow, under certain conditions, remote code execution on the device,” the report stated. “This type of vulnerability is also present on the gateway which controls the sensors and alarms.” This could allow hackers to potentially disable alarms or sensors as well. Read more…
