Friday, October 23, 2009

Spoofing IP based CCTV systems

The case against the security of IP based CCTV systems was recently highlighted with the release of a new tool shown at the Defcon hacker conference in Las Vegas.  A security assessment tool, Videojak has the ability to both intercept Internet video feeds and eject false 'looped' images.



Similar in concept to Hollywood's "Mission Impossible" where the attacker can hack, monitor and record a CCTV feed (when nothing is happening), then play this back in a loop to hide the actual live feed (presumably while Tom Cruise is lowered down on a black rope).

This tool also provides the ability to intercept video conferencing.

To be on the safe side, if you are using any kind of conferencing facility you should assume that the information can be intercepted. With the popularity of IP streamed video systems we are not sure if our network is compromised or not.


No comments:

Post a Comment