"Hackers Exploit High Severity Flaw in TBK DVR Camera System"

According to security researchers at Fortinet, a five-year-old vulnerability in TBK’s DVR camera system (CVE-2018-9995) has been exploited in the wild in April 2023.  The High severity flaw derives from an error the camera experiences when handling a maliciously crafted HTTP cookie.  The researchers noted that a remote attacker might exploit this flaw to bypass authentication and obtain administrative privileges, eventually leading to access to camera video feeds.  The researchers explained that they noticed a spike of more than 50,000 attempted attacks on these devices with unique IPS (intrusion prevention systems) detections last month.  Despite the vulnerability being first discovered in 2018, a patch for it may not yet be available.  The researchers stated that they are unaware of any patches provided by the vendor and recommend organizations to review installed models of CCTV camera systems and related equipment for vulnerable models.  According to TBK’s website, there are currently 600,00 cameras, 50,000 CCTV recorders, and 300,000 accessories installed worldwide across banking, retail, government, and other sectors, making the attack surface for the vulnerability particularly wide.

Infosecurity reports: "Hackers Exploit High Severity Flaw in TBK DVR Camera System"