This security camera was infected by malware 98 seconds after it was plugged in

Previous discussion on the original tweets: <a href="https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=12985974" rel="nofollow">https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=12985974</a>

This brings back memories of Windows 95-98 era, where a fresh install would get infected in matter of seconds after connected to the internet.<p>I expect the IoT to go though a similar phase, but eventually get fixed and be secure enough.

Having flashbacks to the &#x27;bad old days&#x27; of similar things happening to Windows machines (PCs, ATMs, etc). Microsoft, the gigantic, near-monopoly company in the space with a jillion very smart people working for it, struggled with such issues for many years (though eventually reined it in).<p>This time, though, I don&#x27;t see a tenable path to actually fix this. The IoT industry is terribly, terribly fragmented. Few business models incentivize providing ongoing maintenance once they&#x27;ve sold you their gizmo. Few consumers have the ability to detect that this is happening.<p>I suspect that security and compatibility issues will cripple a large chunk of the IoT industry, with bigger players slowly picking off the profitable&#x2F;useful chunks with niche products customers will think of as &#x27;safe&#x27; (read: Amazon&#x2F;Google&#x27;s many IoT products).<p>In the mean time, I&#x27;ll continue avoiding smart&#x2F;IoT devices in my house. The risks seem to far, far, outweigh the rewards.

I wonder how many of these cheap things are going to get plugged in this holiday season with default login&#x2F;passwords.

What is a good security camera? Who makes good ones?<p>I haven&#x27;t been able to find a company who provides a quality POE device that allows me to control the feed into something like Zoneminder.<p>Do I have to use something more analog to be &quot;safer&quot; from something like this?

What is the expected time between port scan for an arbitrary IPv4 address? Is the level of scanning activity so high (or so well-targeted to &quot;promising&quot; address spaces) that one should expect to be scanned in minutes?

&gt; Better-quality devices will almost certainly be better protected against this kind of thing, and may for example block all incoming traffic until they’re paired with another device and set up manually. Still, this is a good reminder that it really is a jungle out there.<p>This seems like a bold claim, unless they define &quot;better quality&quot;.

How would the malware even know that the camera was connected in? Especially if you&#x27;re on a home network (which is firewalled &#x2F; has NAT on).<p>I suspect that it must be the central server that this camera reports to that is infected, either directly, or indirectly with some program sitting at a nearby router listening for traffic.

News flash: If you expose a device web-accessible port to an internet IP with no firewall and leave the default user name and password intact, it will get hacked.<p>Put your shit behind firewalls and change the default user name and password to something secure. This is common sense stuff, people. Port scanners have existed for ages.

From the tweet pics, it looks like the outside IP was able to connect to the camera via telnet.<p>Does the camera firmware open a UPNP tunnel in AP to its telnet port?<p>Does this guy&#x27;s Wifi router enable anyone one to open tunnels in his AP router?

The article missed an important fact:<p>Question: interesting tweets Rob, is it used Dynamic DNS when it is initially setup? If no , how is it exposed to internet?<p>Answer: I had to map the external port 23 on the firewall to the device.

Eek, who knew the rise of cheap CMOS-based surveillance cameras would lead to DDOS attacks?

Are most of these things spread via random IPv4 address probes? Are we going to be a somewhat safer when networks are IPv6-only due to the size of the address space vs the used addresses?

a tech industry veteran - Internet-scanning(his hobby) - cheap camera - no firewall - wannabe famous -&gt; make your pick. 100% he infected it himself.

It almost looks like the camera producer&#x2F;someone from an internal team was responsible for either giving out backdoor or actually infecting the camera...