Thousands of unpatchable IP cameras (Two Zero-Days)

[LASER_oneXM]

....saw this article few minutes ago:
Hundreds of Thousands of Unpatchable IP Cameras Affected by Two Zero-Days


Two quotes from this article:

Hundreds of thousands of IP cameras from several vendors are affected by two zero-day vulnerabilities that allow an attacker to hijack the device, use it as a pivot point for other attacks, or spy on the camera's owner. The zero-days affect the web server built into the firmware of many of these devices, which allows users to connect to the IP camera, configure it, or view a live feed.

Researchers: Just throw out the camera

"The only way to guarantee that an affected camera is safe from these exploits is to throw it out," Serper said, "Seriously." Serper then goes on to say that there could be another way to update these devices, and that's by using a script he created. "The script, however, includes the exploits’ code," the researcher sadly explains. "This means attackers could use the script for nefarious purposes, so I don’t want to release it."

 

[frogboy]

This sort of marries in with this. Same subject at any rate.

80 Sony IP camera models come with backdoors - Help Net Security

 

[jamescv7]

Researchers: Just throw out the camera

Nice solution, a big face palm to the manufacturers for not providing up to date firmware.

 

[LASER_oneXM]

^^
....i'm waiting for the next windows patch day:

"in this month you can only patch/update your PCs/Laptops by throwing out all your PC/Laptops"

"Klick OK to shut down this computer. Then you can safely throw out your computer"