"Cybercriminals Are Selling Access to Chinese Surveillance Cameras"

According to new research, over 80,000 Hikvision surveillance cameras worldwide are vulnerable to an 11-month-old command injection flaw. Hikvision, short for Hangzhou Hikvision Digital Technology, is a Chinese state-owned video surveillance equipment manufacturer. Their customers come from over 100 countries, including the US, despite the FCC's designation of Hikvision as "an unacceptable risk to US national security" in 2019. CVE-2021-36260 was assigned to a command injection flaw in Hikvision cameras last fall. NIST assigned the exploit a critical 9.8 out of 10 rating. Researchers discovered several instances of hackers attempting to collaborate on exploiting Hikvision cameras via the command injection vulnerability, particularly in Russian dark web forums where leaked credentials are being sold. Chinese threat actors such as MISSION2025/APT41, APT10 and its affiliates, as well as unknown Russian threat actor groups, are suspected of exploiting vulnerabilities in these devices to further their objectives. This article continues to discuss the vulnerability of 80,000 Hikvision surveillance cameras to an 11-month-old CVE leaving thousands of organizations exposed. 

Threatpost reports "Cybercriminals Are Selling Access to Chinese Surveillance Cameras"