Nuuo Zero-Day Used to Hijack Surveillance Camera Footage, Thousands of Devices Affected

Nuuo Zero-Day Used to Hijack Surveillance Camera Footage, Thousands of Devices Affected

Researchers from Tenable recently warned that a zero-day flaw affecting hundreds of thousands of devices running the Nuuo software allows attackers to remotely tamper with video surveillance footage.  

The Peekaboo bug, which has been assigned as CVE-2018-1149, also allows threat actors to steal information such as credentials, IP addresses, port usage, and the make & models of connected surveillance devices.  

The Nuuo software is white labeled to over 100 brands and 2,500 camera product lines and currently remains unpatched.

 

Source: ZDNet

 

Disini & Disini Law Office
info@privacy.com.ph