{"id":2828,"date":"2024-11-01T14:45:57","date_gmt":"2024-11-01T14:45:57","guid":{"rendered":"https:\/\/aegislens.com\/home\/?p=2828"},"modified":"2024-11-01T14:45:57","modified_gmt":"2024-11-01T14:45:57","slug":"uncovering-cyber-threats-hackers-exploit-zero-day-flaw-in-ptz-cameras","status":"publish","type":"post","link":"https:\/\/aegislens.com\/home\/uncovering-cyber-threats-hackers-exploit-zero-day-flaw-in-ptz-cameras\/","title":{"rendered":"Uncovering Cyber Threats: Hackers Exploit Zero-Day Flaw in PTZ Cameras"},"content":{"rendered":"

“`html<\/p>\n

Hackers Target Critical Zero-Day Vulnerability in PTZ Cameras<\/h1>\n

Summary:<\/strong> Cybercriminals are actively seeking to exploit two zero-day vulnerabilities discovered in PTZOptics pan-tilt-zoom (PTZ) live streaming cameras, widely utilized in industrial, healthcare, business conferences, government, and courtroom environments.<\/p>\n

Introduction<\/h2>\n

Two critical zero-day vulnerabilities with a perfect 10 CVSS (Common Vulnerability Scoring System) score have been identified in PTZ cameras manufactured by PTZOptics.<\/p>\n

The vulnerabilities, tracked under CVE-2021-28372 and CVE-2021-28373, could allow remote attackers to take over the affected devices completely.<\/p>\n

The Vulnerabilities Explained<\/h2>\n

The first vulnerability, CVE-2021-28372, is a pre-authentication command injection flaw in the web server of the camera that could enable hackers to control remote actions.<\/p>\n

By sending specially-crafted HTTP requests, a hacker can inject arbitrary commands into the web interface of the cameras without needing a valid login. <\/p>\n

The second vulnerability, CVE-2021-28373, is a path traversal flaw that allows a hacker to read arbitrary files on the device.<\/p>\n

By manipulating file paths in requests to the web server, a malicious actor can gain access to confidential information, potentially leading to further exploitations.<\/p>\n

The Widespread Impact<\/h2>\n

PTZ cameras affected by these vulnerabilities are extensively utilized around the globe.<\/p>\n

This makes the potential risk severe and far-reaching, affecting a multitude of industries including industrial complexes, healthcare providers, professional conference settings, governmental buildings, and courtroom settings.<\/p>\n

Real-world Examples<\/h2>\n

In 2020, amidst the COVID-19 pandemic when reliance on video conferencing and remote communication technologies increased, hackers targeted similar vulnerabilities in Zoom video software, affecting millions of users worldwide.<\/p>\n

The incident underscored the growing significance of camera security. <\/p>\n

What should you do?<\/h2>\n

While PTZOptics has not yet released a security patch, users should follow standard cybersecurity protocols to mitigate the risk.<\/p>\n

Isolate the cameras from the network, use complex login credentials, disable remote access when not needed, and follow basic cybersecurity hygiene.<\/p>\n

Ensure strict monitoring to detect any suspicious activities.<\/p>\n

Beyond these steps, professionals should alert their cybersecurity teams and IT departments about these vulnerabilities and take necessary mitigation actions promptly.<\/p>\n

Follow-Up Reading<\/h3>\n