Security Researchers Discover Growing List of Mirai-Vulnerable IP Cameras

Security researchers have found even more vulnerable IoT devices waiting to be taken advantage of by the Mirai botnet and consorts. Several backdoors have been discovered in over 80 different IP camera models produced by Sony Corp. Moreover, there is close to half a million white-label IP cameras that are vulnerable to  similar attacks. This is not a positive development, and only a sign of what is to come in the years ahead.

IP Cameras Become The New Mirai Targets

The growing network of IoT devices is both a positive and troublesome development. On the one hand, it is good to see more electronics being made accessible, whether through online interfaces or mobile applications. But these devices also suffer from lackluster security features, which make them extremely vulnerable to attacks and malware.

SEC Consult, an Austrian security firm, discovered two different backdoor accounts affecting Sony IPELA Engine IP Cameras. These devices are mainly used by large enterprises and government authorities. By using one of these two user accounts, hackers can gain remote access to these devices and take over the built-in web server. Once that step has been completed, they can do virtually anything they want.

In most cases, it seems plausible to assume that assailants will execute a telnet attack. Through this protocol, assailants scan complete remote logins over the Internet, the same attack vector used by the Mirai malware. Putting two and two together reveals that these

Sony Corp IP cameras will be targeted by Mirai malware soon, assuming that has not happened already.



Related Post

For now, it remains unclear how many of these devices could be vulnerable to a telnet attack, though. KrebsOnSecurity mentioned how there are over 4,000 devices reachable over the Internet, putting all of those devices at risk of being attacked. However, it is possible that the final numbers will be much higher.

Unfortunately, these are not the only types of IP cameras vulnerable to attack by the Mirai botnet. Cybereason security researchers discovered two new flaws affecting dozens of IP camera families produced under different brand names. The vast majority of these devices can be purchased on eBay or Amazon, making them widely accessible, and significant security risks.

To make matters worse, these devices can still be exploited when behind a firewall. This is rather unusual, since firewalls should be perfectly capable of eliminating any hacking attempts by assailants. All of these cameras have a factor-default P2P communication capability that enables remote cloud access through the manufacturer’s website.

If you liked this article, follow us on Twitter @themerklenews and make sure to subscribe to our newsletter to receive the latest bitcoin, cryptocurrency, and technology news.

JP Buntinx

JP Buntinx is a FinTech and Bitcoin enthusiast living in Belgium. His passion for finance and technology made him one of the world's leading freelance Bitcoin writers, and he aims to achieve the same level of respect in the FinTech sector.

Share
Published by
JP Buntinx

Recent Posts

TRX Price Prediction: Tron Network Fee Cut to Spark New ATH?

Back into Spotlight: Tron Network Fee Cut Could Push TRX to ATH, But This DeFi…

8 hours ago

Altcoin Alert: Crypto Market Cap Breaches Key Level Hinting at an 8000x Rally for this Shiba Inu Killer

Shiba Inu (SHIB) gave enormous returns in 2021, making many early holders millionaires. After the…

12 hours ago

XRP Crash? XRP Falls Below $0.5 Resistance Level as Next Gen Altcoin JetBolt Takes Over

Spooky season might be over but doom is still looming as Ripple’s XRP falls below…

15 hours ago

This New Exchange Token Is Poised for a Price Surge Alongside Cardano and Avalanche – Analysts Predict Huge Gains This November

Three promising altcoins are causing a stir among investors this November: Avalanche (AVAX), Cardano (ADA),…

15 hours ago

With Dogecoin Dipping and TRON Holding, Is Lunex the Hottest Crypto Now?  

Everyone knows what the hottest crypto can do. When it was so hot it was…

15 hours ago

Tron Fees To Be Cut In Half Through Proposal 95, Cutoshi Surpasses $600k As TRX Investors Join CUTO Presale

The Tron network has witnessed incredible growth in several areas, especially in its adoption, which…

16 hours ago