The story appears on

Page A2

October 27, 2016

GET this page in PDF

Free for subscribers

View shopping cart

Related News

Home » Nation

Recall for Chinese webcams in US

UP to 10,000 webcams are to be recalled by China’s Hangzhou Xiongmai Technology Co in the aftermath of a cyber attack last week that blocked access to some of the world’s biggest websites.

In Washington, a member of the US Senate intelligence committee asked three federal agencies what steps the government can take to prevent cyber criminals from compromising electronic devices.

In a new type of attack last Friday, hackers harnessed hundreds of thousands of webcams and other connected devices globally to flood US-based Internet infrastructure provider Dyn with so much traffic that it could not cope, cutting access to websites including PayPal, Spotify and Twitter.

Hangzhou Xiongmai said it would recall some surveillance cameras sold in the United States after researchers identified that they had been targeted in the attack.

Liu Yuexin, Xiongmai’s marketing director, estimated the number of vulnerable devices at fewer than 10,000 to be recalled. He said the company would recall the first few batches of surveillance cameras made in 2014 that monitor rooms or shops for personal, rather than industrial, use.

Xiongmai had now fixed loopholes in earlier products, prompting users to change default passwords and block telnet access, Liu said.

The US Department of Homeland Security said it had discussed the attacks with 18 major communications service providers and was working to develop a new set of “strategic principles” for securing Internet-connected devices.

Authorities have yet to identify suspects in the attack, but the Director of US National Intelligence, James Clapper, said on Tuesday that an early analysis did not point to a foreign government.

Cyber intelligence firm Flashpoint concurred.

“The evidence that we have strongly suggests it is amateur, attention-motivated hackers,” said Allison Nixon, Flashpoint’s director of security research.

Nixon said the same infrastructure was used on Friday in an unsuccessful attempt to disrupt Internet access to a major video game manufacturer, which she declined to identify.

“Nation states generally don’t attack gaming companies,” she said.

US Senate intelligence committee member Senator Mark Warner, a Democrat, sent letters to the DHS, the Federal Communications Commission and Federal Trade Commission asking if they had adequate tools for combating the threat posed by “botnet” armies of infected electronic devices. “Manufacturers today are flooding the market with cheap, insecure devices, with few market incentives to design the products with security in mind, or to provide ongoing support,” Warner said.

He asked FCC Chairman Tom Wheeler if communications providers had the authority to deny Internet access to electronics devices they deem insecure.

Xiongmai devices were unlikely to suffer similar attacks in China and elsewhere outside the US, where they are typically used in more secure industrial networks, Liu said.

The company may take further steps to beef up security by migrating to safer operating systems and adding further encryption, Liu said.




 

Copyright © 1999- Shanghai Daily. All rights reserved.Preferably viewed with Internet Explorer 8 or newer browsers.

沪公网安备 31010602000204号

Email this to your friend