23 matches found
CVE-2026-5386 KMW CCTV Security Cameras Unverified Password Change
The affected KMW CCTV Security Cameras are vulnerable to a critical unauthenticated password reset. This flaw allows an attacker to remotely reset the administrator password to a known value without authentication, granting full access to the camera feeds and settings...
KMW CCTV Security Cameras
ADVISORY SUMMARY Successful exploitation of this vulnerability may grant full unauthorized access to camera feeds and settings. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Minimize network exposure for all...
EUVD-2026-31124
An undocumented configuration export port is accessible on some models of ZKTeco CCTV cameras. This port does not require authentication and exposes critical information about the camera such as open services and camera account credentials...
CISA Releases Three Industrial Control Systems Advisories
CISA released three Industrial Control Systems ICS Advisories. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-343-01 Universal Boot Loader U-Boot ICSA-25-343-02 Festo LX Appliance ICSA-25-343-03 Multiple India-Base...
ICAM365 CCTV Camera Multiple Models
RISK EVALUATION Successful exploitation of these vulnerabilities could result in unauthorized exposure of camera video streams and camera configuration data. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such...
Smart home security advice. Ring, SimpliSafe, Swann, and Yale
Introduction This guide covers the security of smart home security products from Ring, Yale, Swann, and SimpliSafe. Whether you're looking to monitor your property remotely, enhance your home's security, or see who’s at the front door, this guide will provide you with valuable insights. We have...
Polite WiFi loophole could allow attackers to drain device batteries
Researchers at the University of Waterloo in Ontario have further researched a loophole in the WiFi protocol that was dubbed "polite WiFi". Last year the researchers published a study in which they showed someone could use this loophole to triangulate the location of any WiFi enabled device. Now,...
OpIran – Anonymous Hits Iranian State Sites, Hacks Over 300 CCTV Cameras
By Waqas Here's everything you want to know about Anonymous and its cyber attacks against the Iranian government for OpIran. This is a post from HackRead.com Read the original post: OpIran - Anonymous Hits Iranian State Sites, Hacks Over 300 CCTV Cameras...
Hackers all over the world are targeting Tasmania’s emergency services
Emergency services—under which the police, fire, and emergency medical services departments fall—is an infrastructure vital to any country or state. But when those services come under threat from either physical or cyber entities, it’s as good as putting the lives of citizens at risk as well...
Real-life social engineering. Two days in tweets
This is the write-up of my live tweets while on a recent social engineering engagement. It’s all available on my feed @ghostie I did this because I wanted to share what it's like to prep for, and work through a job, warts and all. If you can take anything away, to enhance your technique, or defen...
CVE-2019-6973
Sricam IP CCTV cameras are vulnerable to denial of service via multiple incomplete HTTP requests because the web server based on gSOAP 2.8.x is configured for an iterative queueing approach aka non-threaded operation with a timeout of several seconds...
CVE-2019-6973
Sricam IP CCTV cameras are vulnerable to denial of service via multiple incomplete HTTP requests because the web server based on gSOAP 2.8.x is configured for an iterative queueing approach aka non-threaded operation with a timeout of several seconds...
Zero-Day Bug Allows Hackers to Access CCTV Surveillance Cameras
Between 180,000 and 800,000 IP-based closed-circuit television cameras are vulnerable to a zero-day vulnerability that allows hackers to access surveillance cameras, spy on and manipulate video feeds or plant malware. According to a Tenable Research Advisory issued Monday, the bugs are rated...
Israeli Rabbi arrested for hacking CCTV cameras at women’ bathing suit shop
By Carolina Israeli police have arrested a 41-year-old man for allegedly hacking This is a post from HackRead.com Read the original post: Israeli Rabbi arrested for hacking CCTV cameras at women’ bathing suit shop...
JAWS/1.0 RCE Vulnerability
The JAWS/1.0 web server is prone to a remote command execution RCE vulnerability. This VT has been deprecated as the flaw is already covered by the VT SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respecti...
Digital Video Recorder Web Authentication Bypass (JAWS/1.0)
The web-based authentication of the connected digital video recorder - running on a JAWS/1.0 server - is prone to an authentication bypass vulnerability. This VT has been deprecated as the flaw is already covered by the VT SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be...
Cameradar v2.0 - Hack into RTSP CCTV cameras
An RTSP stream access tool that comes with its library. Cameradar allows you to Detect open RTSP hosts on any accessible target host Detect which device model is streaming Launch automated dictionary attacks to get their stream route e.g.: /live.sdp Launch automated dictionary attacks to get the...
Hacker Can Steal Data from Air-Gapped Computers Using IR CCTV Cameras
Air-gapped computers that are isolated from the Internet and physically separated from local networks are believed to be the most secure computers which are difficult to infiltrate. However, these networks have been a regular target in recent years for researchers, who have been trying to...
New Mirai Variant Roars into Action With 54 Hour DDoS Attacks
A variant of the Mirai malware pummeled a U.S. college last month with a marathon 54-hour long attack. Researchers say this latest Mirai variant is a more potent version of the notorious Mirai malware that made headlines in October, targeting DNS provider Dyn and the Krebs on Security website. Th...
Credentials Accessible in Siemens-Branded CCTV Cameras
Vanderbilt Industries has provided a firmware update for more than a dozen Siemens-branded IP-based closed circuit TV cameras that patches a serious, remotely exploitable vulnerability. The flaw, CVE-2016-9155, could allow an attacker to gain admin credentials by sending certain crafted requests,...