The hacker who invaded Capital One has hacked other 30 companies
infosec

The hacker who invaded Capital One has hacked other 30 companies

Further investigation into Paige A. Thompson, the hacker accused of causing data breach on Capital One, showed ...
Read More
infosec

Instantly update Windows 10 users. Critical vulnerabilities identified!

Microsoft warns Windows 10 users to update their operating system immediately because of two critical vulnerabilities. OR...
Read More
infosec

European Central Bank hacked!

The European Central Bank (ECB) closed one of its websites on Thursday after being hacked and infected by a hacker ...
Read More
infosec

Why are wireless routers dangerous to my security?

Despite improving cybersecurity for both business and home users, many popular wireless ...
Read More
infosec

This security flaw allows hackers to steal your photos

For the most part, hackers are pretty good at what they do. If it wasn't, companies wouldn't ...
Read More
Latest Posts

This security flaw allows hackers to steal your photos

For the most part, hackers are pretty good at what they do. If it were not, the companies would not spend millions of dollars a year on secure infrastructure. But even the most dedicated engineers and analysts do not always understand / detect security flaws. That is why security researchers and the white hat hackers work tirelessly to discover these errors before hackers find the opportunity to exploit them.

hacker

However, security flaws are not only found on computers, phones or servers. Sometimes, an ordinary device or gadgets can become a victim of a security exploitation that puts users at risk. Recently, researchers have discovered a critical hole in a popular series of cameras. If left unchecked, a hacker could easily install ransomware or steal it photos of the user for himself.

Fortunately, security researchers who discovered the defect believe they have the solution to exploit. Read on to find out what they found and how to fix your camera to keep your private photos safe.

Canon DSLRs at risk of exploiting Wi-Fi

Check Point Software Technologies security researchers have recently discovered an unusual vulnerability in Canon DSLR cameras that use a third-party firmware called Magic Lantern. The issue arises as part of the camera's ability to connect to a computer via Wi-Fi for photo transfers.

According to the Check Point report, hackers can access the camera's Wi-Fi connection during a transfer and enter malicious code to gain access. For demonstration purposes, Check Point installed remotely ransomware on the test camera. The ransomware was very easy to encrypt the entire device and its SD card. Of course after the encryption it needed an unlock code to use the camera again.

Worst of all, the user does not even have to interact with the camera to become a victim of hacking. All the cybercriminals needed was to use the same Wi-Fi network that the camera uses to transport.

I have a Canon DSLR. How can I protect myself from this security hole?

Fortunately, Check Point recognized the defect in March and worked closely with Canon during the repair process. Canon has officially released a patch to troubleshoot that can be downloaded to any of the compatible DSLR cameras.

Connection is required to install it USB. The patch can be downloaded by connecting the camera to a computer and then performing a regular update firmware. It patch will be included in the latest version.

For an additional level of security (or if you can't get the patch), you can disable the networking feature of camera and use only USB for photo transfers. Unless a hacker enters the camera directly, he is unlikely to be able to carry out the attack in any other way.

As serious as this security issue is, it is encouraging that we see a company working with researchers to better serve its customers. We may see in the future that this kind of cooperation will become the rule of the technology industry.

Share
Do you have an opinion? Leave your comment.

The author allows you to copy his / her text only if you report the source (SecNews.gr), as an e-mail address (Live URL) of the article.
Updated on by

Reader Interactions

Leave a reply

Your email address is not published. Τα υποχρεωτικά πεδία σημειώνονται με *