For the most part, hackers are pretty good at what they do. If it were not, the companies would not spend millions of dollars a year on secure infrastructure. But even the most dedicated engineers and analysts do not always understand / detect security flaws. That is why security researchers and the white hat hackers work tirelessly to discover these errors before hackers find the opportunity to exploit them.
However, security flaws are not only found on computers, phones or servers. Sometimes, an ordinary device or gadgets can become a victim of a security exploitation that puts users at risk. Recently, researchers have discovered a critical hole in a popular series of cameras. If left unchecked, a hacker could easily install ransomware or steal it photos of the user for himself.
Fortunately, security researchers who discovered the defect believe they have the solution to exploit. Read on to find out what they found and how to fix your camera to keep your private photos safe.
Canon DSLRs at risk of exploiting Wi-Fi
Check Point Software Technologies security researchers have recently discovered an unusual vulnerability in Canon DSLR cameras that use a third-party firmware called Magic Lantern. The issue arises as part of the camera's ability to connect to a computer via Wi-Fi for photo transfers.
According to the Check Point report, hackers can access the camera's Wi-Fi connection during a transfer and enter malicious code to gain access. For demonstration purposes, Check Point installed remotely ransomware on the test camera. The ransomware was very easy to encrypt the entire device and its SD card. Of course after the encryption it needed an unlock code to use the camera again.
Worst of all, the user does not even have to interact with the camera to become a victim of hacking. All the cybercriminals needed was to use the same Wi-Fi network that the camera uses to transport.
I have a Canon DSLR. How can I protect myself from this security hole?
Fortunately, Check Point recognized the defect in March and worked closely with Canon during the repair process. Canon has officially released a patch to troubleshoot that can be downloaded to any of the compatible DSLR cameras.
Connection is required to install it USB. The patch can be downloaded by connecting the camera to a computer and then performing a regular update firmware. It patch will be included in the latest version.
For an additional level of security (or if you can't get the patch), you can disable the networking feature of camera and use only USB for photo transfers. Unless a hacker enters the camera directly, he is unlikely to be able to carry out the attack in any other way.
As serious as this security issue is, it is encouraging that we see a company working with researchers to better serve its customers. We may see in the future that this kind of cooperation will become the rule of the technology industry.