If you have home security cameras, assume that shyt is hacked :scust:

Geek Nasty · Aug 19, 2019

Talked to this Asian dude at work, didn't say outright but implied Chinese have hacked all these systems. I'm setting up cameras around my house, a few security red flags had me :usure:

* The web interfaces seem to always be plain HTTP. So, if you're using 3rd party apps to access your home network, that shyt is all plain text communications; including your password. I did some research trying to find a camera system, and a lot of them have unsecured HTTP interfaces to the NVRs. Hmmmm...
* Their support team wants remote access to your PC every time you contact them
* I've got a Lorex system, looked up online how their app works. Called "Easy Viewer", a third party app written by a Chinese guy. People complaining in comments every time they use the app their home security gets hacked. Hmmmm...
* One of the EULA stipulations was agreeing to allow your camera footage to be streamed overseas if you opt in for cloud storage. Makes ZERO sense sending all that content to server banks overseas unless they have a good reason.

Working on locking mind down so all it can do is talk to the cameras or Lorex. Pisses me off too because if this is legit, this should be well reported by US intelligence services.

xXMASHERXx · Aug 19, 2019

Geek Nasty said:
Talked to this Asian dude at work, didn't say outright but implied Chinese have hacked all these systems. I'm setting up cameras around my house, a few security red flags had me

* The web interfaces seem to always be plain HTTP. So, if you're using 3rd party apps to access your home network, that shyt is all plain text communications; including your password. I did some research trying to find a camera system, and a lot of them have unsecured HTTP interfaces to the NVRs. Hmmmm...
* Their support team wants remote access to your PC every time you contact them
* I've got a Lorex system, looked up online how their app works. Called "Easy Viewer", a third party app written by a Chinese guy. People complaining in comments every time they use the app their home security gets hacked. Hmmmm...

Working on locking mind down so all it can do is talk to the cameras or Lorex. Pisses me off too because if this is legit, this should be well reported by US intelligence services.

US knows and probably does the same thing. Is it not possible to put the camera system behind a firewall and only allow traffic from the inside to it?

Thurgood Thurston III · Aug 19, 2019

Any way to get around this? Or any brands you recommend?

Geek Nasty · Aug 19, 2019

xXMASHERXx said:
US knows and probably does the same thing. Is it not possible to put the camera system behind a firewall and only allow traffic from the inside to it?

Yeah you can add any kinds of restrictions you want, but I only know how to do this at a low level. I don't know if typical wifi routers give you this level of setup.

Geek Nasty · Aug 19, 2019

Thurgood Thurston III said:
Any way to get around this? Or any brands you recommend?

I'm not security guy so I don't know. Even if I lock the camera system down to just communicating with Lorex, the system itself could be corrupt. Maybe someone else with security cred would know.

Lorex is Canadian which is what trips me out. You'd think they'd be safer.

xXMASHERXx · Aug 19, 2019

Not sure what kind of router you have but most home router you have but it should have some type of firewall or acl. You should be able to enter the ip addresses of the cameras into a list and then block all traffic outside the local network on those ips. This is one of the reason why I don't like any kind of smart devices around my living area.

Let A Fro Be A Fro · Aug 19, 2019

The "Internet of Things" = massive security risk in all products, the death the privacy, and even the death of private ownership of consumer goods in many ways

Dorian Breh · Aug 19, 2019

I think you would sort of need to do it yourself using raspberry pi and open source softwares (with encryption key obviously) to get around these vulnerabilities

If any 6cert breh wanna come thru with a walk thru you can hold these reps

King Frost · Aug 19, 2019

Thurgood Thurston III said:
Any way to get around this?

yes, don't put it on the world wide web

if you insist on having it on the web, change the port number, adjust the router firewall, add it to cloudflare, put 16 to 64 character password on it

:yeshrug:

O.T.I.S. · Aug 19, 2019

Well honestly, this could be any device especially if you’re going with some cheap, off the wall, no name brand device that you connect to your computer systems.

They have phone charging cables with malicious software or rogue ap’s on then that could hack into your computer.

peppe · Aug 19, 2019

If your working with http instead of httpS then its your own fault.

Justin Nitsuj · Aug 19, 2019

We're slowly losing our right of privacy :francis:

If you have home security cameras, assume that shyt is hacked :scust:

More options

Geek Nasty

Brain Knowledgeably Whizzy

xXMASHERXx

Superstar

Thurgood Thurston III

#LLNB #LLLB #E4R x 2 🖤🖤🖤🆚🌀🌀

Geek Nasty

Brain Knowledgeably Whizzy

Geek Nasty

Brain Knowledgeably Whizzy

xXMASHERXx

Superstar

Let A Fro Be A Fro

Superstar

Dorian Breh

Veteran

King Frost

Stay Frosty

O.T.I.S.

Veteran

peppe

Superstar

Justin Nitsuj

Superstar

Similar threads