SafeUM
Home Blog Services Download Help About Recharge

Axarhöfði 14, 110 Reykjavik, Iceland

Iceland - 2015
SafeUM
Blog
Services
Download
Help
About
Recharge
Menu
Archive
TOP Security!
29 Mar 2016

Firmware bug in CCTV software may have given POS hackers a foothold

A researcher with RSA says faulty firmware found in security cameras sold by at least 70 vendors may be a contributor to many of the credit card breaches that have proved costly to retailers.

Rotem Kerner based his research on a paper RSA published in December 2014 into a malware nicknamed Backoff, which steals payment card details processed by point-of-sale systems.

The U.S. Secret Service and Department of Homeland Security warned in August 2014 that upwards of 1,000 U.S. businesses may have been infected with Backoff. The advisory came after a hard year in which many major retailers became victims of large payment card breaches, including Target, Neiman Marcus, Michaels and UPS Store. Kerner looked at the technical data RSA had collected from computers that were infected with Backoff. Strangely, many were running small Web servers with open ports on 81, 82 and 8000.

The software, named "Cross Web Server," proved to be for CCTV DVR (digital video recorder) equipment, which is widely used by retailers for physical monitoring. But the server software was left running and open to the Internet, which is a potential security risk. Shodan, a search engine for finding networked devices open to the Internet, turned up 30,000 machines running the same software, according to Kerner's writeup.

Kerner figured out the Web server software was made by a Chinese company called TVT. He downloaded a version of the firmware for the CCTV DVR devices from the company's website. Probing the firmware, he found a weakness in the code that would allow him to get remote access to the device through a malicious URI.

The big security problem is that this kind of software shouldn't be accessible from the public Internet. The mere presence of camera software left open to the Internet can help attackers identify a particular network and figure out if one belongs to a retailer. Access to the device itself could help in gaining entry to the broader network, which could eventually lead to payment processing systems.

"When the old fashion thieves used to physically break into stores, on their way to the cashier they had to try and avoid or neutralize any surveillance equipment," Kerner wrote. "The digital thieves are entering the store through them. Truly Hollywood material."

His investigation turned up at least 70 manufacturers that use the same firmware, which he listed in a writeup. Kerner tried but failed to reach officials at TVT to warn them of the vulnerability, so he decided to publicly disclose the problem. TVT officials could not be immediately contacted via email on Thursday. It's not uncommon for firmware -- which is low-level code -- to be licensed and used by many vendors for products such as routers, IP cameras and some consumer electronics.

But it's well-known that vendors are notoriously lax about creating patches. As Werner put it: it's hard to rely on a vendor's patch "to arrive at your doorstep." Adding to the complexity is that each vendor may use the firmware in many different models. Werner's recommended defense for those running these types of cameras is to "deny any connection from an unknown IP address to the DVR services."

Tags:
hackers information leaks
Source:
Network World
1891
Other NEWS
3 Jul 2020 safeum news imgage An encrypted messaging service has been infiltrated by police
4 May 2020 safeum news imgage Two-Factor Authentication ​What Is It and Why You Should Use It
12 Dec 2019 safeum news imgage Encryption is under threat - this is how it affects you
4 Nov 2019 safeum news imgage Should Big Decisions Be Based on Data or Your Intuition?
7 Jun 2018 safeum news imgage VPNFilter malware infecting 500,000 devices is worse than we thought
4 Jun 2018 safeum news imgage Hackers target Booking.com in criminal bid to steal hundreds of thousands from customers
1 Jun 2018 safeum news imgage Operator of World's Top Internet Hub Sues German Spy Agency
30 May 2018 safeum news imgage US says North Korea behind malware attacks
29 May 2018 safeum news imgage Facebook and Google targeted as first GDPR complaints filed
25 May 2018 safeum news imgage A new reason to not buy these cheap Android devices
24 May 2018 safeum news imgage Flaws in smart pet devices, apps could come back to bite owners
23 May 2018 safeum news imgage Google sued for 'clandestine tracking' of 4.4m UK iPhone users' browsing data
21 May 2018 safeum news imgage LocationSmart reportedly leaked phone location data onto the web
18 May 2018 safeum news imgage The SEC created its own scammy ICO to teach investors a lesson
17 May 2018 safeum news imgage Thieves suck millions out of Mexican banks in transfer heist
All news
SafeUM
Confidential Terms of Use Our technologies Company
Follow us
Download
SafeUM © Safe Universal Messenger

Axarhöfði 14,
110 Reykjavik, Iceland

Iceland - 2015