It has been reported that there are secret hard-coded accounts in thermal security cameras manufactured by FLIR Systems, Inc., one of the largest vendor of such products. Depending on the FLIR camera version, the following username-password combos will grant an attacker access over the device. Cesare Garlati, Chief Security Strategist at the prpl Foundation commented below.

Cesare Garlati, Chief Security Strategist at the prpl Foundation:

“The divulgence of such information is worrying particularly to all those who have acquired a FLIR security camera. A breach of these devices will not only lead to a considerable loss of privacy, but could potentially lead to human life being threatened and confirms the need for IoT security. The vulnerability uncovered is clear evidence for manufacturers to take an open source approach to security and to implement it at the development stage and not after the device has reached the open market.”

Experts Comments

Stay Tuned! Our Information Security Experts Community is responding .....

Submit Your Expert Comments

What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.

Write Your Expert Comments *
Your Registered Email *
Notification Email (If different from your registered email)
* By using this form you agree with the storage and handling of your data by this web site.