General statistics
List of Youtube channels
Youtube commenter search
Distinguished comments
About
Sky News Australia
comments
Comments by "" (@DanielSMatthews) on "Chinese agents believed to be hacking home security cameras in Taiwan" video.
We have known about this problem for years, IP cameras made in China have all sorts of interesting quirks and flaws in them, such as phoning home to Chinese military controlled time servers while having out of date firmware that potentially contains a network time protocol client with a known vulnerability that can be exploited by a hostile time server. See how that works? But it gets worse, and this is the smoking gun, if you change the NTP server setting to a local one the camera will let you do that then behind your back change it back to the IP address of the Chinese military controlled one in mainland China!
5
We have known about this problem for years, IP cameras made in China have all sorts of interesting quirks and flaws in them, such as phoning home to Chinese military controlled time servers while having out of date firmware that potentially contains a network time protocol client with a known vulnerability that can be exploited by a hostile time server. See how that works? But it gets worse, and this is the smoking gun, if you change the NTP server setting to a local one the camera will let you do that then behind your back change it back to the IP address of the Chinese military controlled one in mainland China!
2
@KIA-MIA-POW I warned them about the risk a couple of years back (and can prove it), I was actually was in communication with the ASD, they clearly ignore the information or "sat on it" rather than warning all of the areas of government that need to know and start replacing any cameras that could not be proven secure. All that aside the cameras should never have been approved in the first place because they should have been applying the principle that all things are banned unless proven safe, the Unix security philosophy, but no they are all Windows weenies who want everything easy to use by plebs so they show no cybersecurity discipline at all in an enterprise that handles many billions of dollars a year and the most sensitive data. It is bloody outrageous, but what do you expect when so few MPs are engineers and even less (if any) have an IT background?
2