Security is a tricky subject. In recent years both digital and physical security has been scrutinised and exposed for some rather crucial weaknesses. Back in May it was claimed that a security researcher was able to remotely issue commands to a plane’s engines, more recently it was revealed that some car companies had silenced an investigation that had found a vulnerability in the way their key fobs communicated with their immobilizer system. Now it’s the turn of internet-enabled cameras to come under fire.
Gianna Gnesa is a security consultant with Ptrace Security, a company based in Switzerland. He was set to speak at the Hack in the Box GSEC Conference that was to be hosted in Singapore. He has since decided to cancel his presentation.
The presentation was set to reveal the breaches in security systems that utilize internet connected video games (IP cameras). Gnesa has since cancelled his presentation after “legal pressure from manufacturers affected”. In the talk, Gnesa was set to “expose vulnerabilities found on major surveillance cameras and show how an attacker could use them to stay undetected”.
Traditionally security consultants work on a “responsible disclosure” policy, in which they only release date about defects or issues with security once the manufacturers or developers have had time to develop and release patches to fix these issues.
Image courtesy of PC World.