Another IoT botnet has been found feasting on vulnerable IP cameras • The Register Forums

Wednesday 10th May 2017 17:31 GMT John Smith 19

"more than a thousand different internet protocol camera models."

Or more likely 5 models with 200 odd resellers badges on them.

UPnP. The protocol that just keeps giving (control of your hardware to someone else).

I know it's infantilely stupid but shouldn't everyone start with the question "What ports are open on my machine?" If it's open do you know what it normally does? Are you happy to have it doing that?

If a port scanner scanned the addresses of your ISP what would they find?

11 0 Reply

Wednesday 10th May 2017 18:19 GMT vir

Re: "more than a thousand different internet protocol camera models."

Further to this, and I suspect an exacerbating factor: hard-coded or default credentials. I think this is a perfect issue to start rallying around to get the ball rolling on IoT security. It's a gaping hole that has been provably exploited already, is easy to explain to anyone, and is easy to fix.

6 0 Reply
Wednesday 10th May 2017 21:49 GMT fidodogbreath

Re: "more than a thousand different internet protocol camera models."

I know it's infantilely stupid but shouldn't everyone start with the question "What ports are open on my machine?"

The electronics industry has created a flawed expectation that consumer IT products are just like hooking a Blu-ray player to a TV: plug it in, press Power, enjoy.

What fraction of average home users even know that UPnP exists, much less what it does and why it's dangerous? And without UPnP, how many would have the skills to enable secure remote access to a camera system or other IoThingie?

The root problem is these are IT products, made by companies that don't provide support, sold to and installed by people with no IT skills. So we have crap like UPnP, otherwise the new shinies get returned to the store because consumers can't make them work.

7 0 Reply
1. Thursday 11th May 2017 06:43 GMT John Smith 19
  
  "sold to and installed by people with no IT skills. "
  
  Which if I would were callus about it would not bother me.
  
  The problem is that s**t then starts attacking everyone else's stuff.
  
  So instead of being a problem for the ignorati only it now becomes a problem for everyone.
  
  3 0 Reply
Thursday 11th May 2017 16:34 GMT Trigonoceps occipitalis

Re: "more than a thousand different internet protocol camera models."

"What ports are open on my machine?"

I'm sorry, can you say that in English?

Expected answer from >99% of a random sample in the UK.

1 0 Reply
1. Thursday 11th May 2017 22:56 GMT John Smith 19
  
  "What ports are open on my machine?" "I'm sorry, can you say that in English?"
  
  Actually I can.
  
  https://www.grc.com/x/ne.dll?bh0bkyd2
  
  Follow the instructions and watch the pretty pattern form. If it's all Green it's a start. If it's partly Red go find someone who does know about these things and ask them for help.
  
  1 0 Reply

Wednesday 10th May 2017 17:44 GMT vir

The Perfect Parasite

Using its host to reproduce while not damaging it enough to prevent it from multiplying and producing new hosts to infect. As long as the camera is still doing camera things, the user won't care or even notice. Elegant and effective. Can we get David Attenborough to narrate?

14 0 Reply

Wednesday 10th May 2017 19:02 GMT Steve Davies 3

Yet still the unwise go and buy this crap!

I wonder how many PRON sites are getting dodgy images from this stuff?

What is it going to take to get these things banned? Photos of Kim K without makeup?

4 0 Reply

Wednesday 10th May 2017 19:08 GMT Eric 23

Re: Yet still the unwise go and buy this crap!

any photo of Kim K makes me gag & get queezy.

8 1 Reply
Wednesday 10th May 2017 20:06 GMT Anonymous Coward

Re: Yet still the unwise go and buy this crap!

None, one hopes. The quality of video, and not having a camera operator, will make for some very shoddy pr0ns. At the very least, a second camera for the editor to do cuts between to keep the action going, if you're going to shoot using stationary cameras. So they say, so they say. I'm not familiar with shooting pr0n videos, just viewing them.

That's how Kim got her start in "show business:" pr0n. She's fabulously wealthy and all that money cannot buy you attention, so out come the tits, and put a camera in every room, car, and house so the money keeps flowing in, even when they are trying their hardest to piss it all away. Robert K is spinning in his grave from the fact than none of those little dufus' went to school to take up the family business, you know, where the money originally came from, in the law profession. Not one. And they can't start now, they're too old and stupid. I'm just waiting for the money to run out, THEN the show will get mighty interesting. Rich stupid people will eventually run out of money, but they'll be wealthy in stupidity forever. :P

2 0 Reply
1. Thursday 11th May 2017 07:52 GMT Rich 11
  
  Re: Yet still the unwise go and buy this crap!
  
  The quality of video, and not having a camera operator, will make for some very shoddy pr0ns.
  
  You can guarantee that someone somewhere will get off on the fact that it's a shoddy piece of work.
  
  3 0 Reply
  1. Thursday 11th May 2017 10:06 GMT handleoclast
    
    Re: You can guarantee...
    
    You can guarantee that someone somewhere will get off on the fact that it's a shoddy piece of work.
    
    Rule 34: On the internet, there is porn of it. No exceptions.
    
    They're known as "candids."
    
    2 0 Reply

Wednesday 10th May 2017 19:52 GMT Anonymous Coward

is the "attacker" a shoreditch japanese bearded hipster?

1 0 Reply

Wednesday 10th May 2017 20:34 GMT John Smith 19

David Attenborough narrates....

Here once again the placid herd of internet camera users is surreptitiously attacked by this internet parasite. Noiselessly inserting itself into the heart of the users camera it is a voracious consumer of bandwidth and processing cycles, doing whatever it has been programmed to do.

10 0 Reply

Thursday 11th May 2017 02:01 GMT Adrian 4

Re: David Attenborough narrates....

<cut to wildebeest slaughter>

3 0 Reply

Thursday 11th May 2017 05:06 GMT Winkypop

Just apply the "DC Patch"

Infestation aside: yet another use for Duct Tape.

2 0 Reply

Thursday 11th May 2017 06:48 GMT John Smith 19

"Infestation aside: yet another use for Duct Tape."

Indeed.

10 pack Duct Tape.

Not just for 'nappers and serial killers.

0 0 Reply

This post has been deleted by its author

Friday 12th May 2017 22:40 GMT AustinTX

Using generic Chinese Foscam clones

I have their internet access cut off at the router so they can't call out or be reached from outside. Likewise, all of my embedded/IOT-like things are restricted to communicating with specific IP addresses on the LAN. Namely, my workstation and my web server where I run ZoneMinder to record activity.

1 0 Reply

Saturday 13th May 2017 09:57 GMT John Smith 19

"I have their internet access cut off... they can't call out or be reached from outside."

I'd love to see if anyone has any statistics about what percentage of attacks is stopped cold just by doing this.

You'd think by now malware writers have found ways around this but my instinct is that it's still surprisingly effective.

0 0 Reply

Topics

Special Features

Vendor Voice

Resources

COMMENTS

"more than a thousand different internet protocol camera models."

Re: "more than a thousand different internet protocol camera models."

Re: "more than a thousand different internet protocol camera models."

"sold to and installed by people with no IT skills. "

Re: "more than a thousand different internet protocol camera models."

"What ports are open on my machine?" "I'm sorry, can you say that in English?"

The Perfect Parasite

Yet still the unwise go and buy this crap!

Re: Yet still the unwise go and buy this crap!

Re: Yet still the unwise go and buy this crap!

Re: Yet still the unwise go and buy this crap!

Re: You can guarantee...

David Attenborough narrates....

Re: David Attenborough narrates....

Just apply the "DC Patch"

"Infestation aside: yet another use for Duct Tape."

Using generic Chinese Foscam clones

"I have their internet access cut off... they can't call out or be reached from outside."

POST COMMENT House rules

Enter your comment

Add an icon

Other stories you might like

Qualcomm and Qt partner to supercharge UI development for IoT devices

US House approves FISA renewal – warrantless surveillance and all

UK businesses shockingly unaware of how to handle security threats

Ransomware feared as IT 'issues' force Octapharma Plasma to close 150+ centers

Crooks exploit OpenMetadata holes to mine crypto – and leave a sob story for victims

Head of Israeli cyber spy unit exposed ... by his own privacy mistake

Cybercriminals threaten to leak all 5 million records from stolen database of high-risk individuals

Some smart meters won't be smart at all once 2/3G networks mothballed

185K people's sensitive data in the pits after ransomware raid on Cherry Health

Prolific phishing-made-easy emporium LabHost knocked offline in cyber-cop op

Kremlin's Sandworm blamed for cyberattacks on US, European water utilities

Future Roku TVs may inject tailored ads into anything and everything when you pause

About Us

Our Websites

Your Privacy