×

Unlike Others, Arecont Vision Megapixel Cameras Cannot Be Maliciously Repurposed for Use in Cyberattacks

07/21/2017 News Articles

Read/download original article published on Benchmark here.

Cyberattacks on all network-enabled devices are growing in number and impact worldwide. Successful network intrusion, ransomware and distributed denial of service (DDoS) attacks via competitor cameras are increasing. However, the proprietary architecture of Arecont Vision cameras protects against this rising risk of cyberattacks.

A growing cybersecurity problem

Cybersecurity experts agree that any network-enabled device can be hacked; computers, storage devices, DVRs, NVRs, cameras, vehicles, network infrastructure or just about anything that’s network-enabled can in fact be targeted. Emerging connectivity technologies such as IoT (Internet of Things) technology brings many benefits to users, but can also increase the risk to everything on the network and beyond.

It’s becoming more widely known that computers on a network can be infected or exploited in many ways, such as through phishing spam emails, corrupted web links, malicious websites and network intrusions. It really only takes one infected device to expose and propagate an infection to others across a network to have an entire secure network bite the dust in a matter of minutes.

Infected plug-in or wireless-connected devices, such as USB thumb drives and IoT devices, can have viruses or hidden malicious code pre-installed. This is released once the device is connected. Despite virus and malware protection software and firewalls, viruses and malware continue to evolve. Vendors in the network security sector spend so much time, effort and resources in an attempt to stay on top of these emerging threats. Malicious code that has not yet been identified is much harder to stop before doing damage.

Most security cameras are no exception. Competitor cameras and DVRs/NVRs have proven just as susceptible and easy to repurpose for cyberattacks as any other device and are being increasingly used to do so. While strong password policies are a basic starting point for cybersecurity, particularly the use of 16-digit ASCII passwords, they are only one level of protection and are by no means the complete answer to cybersecurity risks.

Once a hacker or virus has gained access to a camera, they can take complete control. Passwords and network protocols (802.1x, HTTPS, etc.) are largely ineffective once the device has been compromised. At this point, the hacker or infected camera can spread malicious code, malware, ransomware, network intrusions, robotic DDoS attacks or other nefarious purposes without challenge, and render what was thought to be a secure surveillance system completely useless.

The Arecont Vision cybersecurity advantage

First in the industry, Arecont Vision offers in-house developed fifth generation Massively Parallel Image Processing (MPIP) architecture that runs exclusively on the Field Programmable Gate Array (FPGA) integrated circuits at the core of every Arecont Vision camera. There is no use of embedded common operating systems such as Linux or Windows, which eliminates cybersecurity vulnerabilities.

Arecont Vision designs and develops its own code and product capabilities, unlike competitors, meaning there’s no licensing of core code, features or chip-sets from third parties. As can be expected, third party code or chipsets can be a potential hidden cybersecurity risk.

In addition to the cybersecurity benefit, having in-house developed features and functions also allows Arecont Vision to optimise its cameras for better overall performance, which is less possible with third party code. This is part of Arecont Vision’s heritage of continued megapixel camera industry leadership.

 

MessagesTimelineExceptionsViews11RouteQueries4Models22MailsGateSessionRequest
7.4.33PHP Version43.1msRequest Duration7MBMemory UsageGET news/{slug}Route
    • Booting (23.54ms)
    • Application (19.45ms)
    • 1 x Booting (54.62%)
      23.54ms
      1 x Application (45.12%)
      19.45ms
      11 templates were rendered
      • themes.avc1.single (resources/views/themes/avc1/single.blade.php)2blade
        Params
        0
        post
        1
        categories
      • themes.avc1.layout.master (resources/views/themes/avc1/layout/master.blade.php)10blade
        Params
        0
        obLevel
        1
        __env
        2
        app
        3
        smallsliders
        4
        errors
        5
        post
        6
        categories
        7
        __currentLoopData
        8
        category
        9
        loop
      • themes.avc1.partials.header (resources/views/themes/avc1/partials/header.blade.php)10blade
        Params
        0
        obLevel
        1
        __env
        2
        app
        3
        smallsliders
        4
        errors
        5
        post
        6
        categories
        7
        __currentLoopData
        8
        category
        9
        loop
      • menuheader (resources/views/menuheader.blade.php)2blade
        Params
        0
        items
        1
        options
      • themes.avc1.partials.footer (resources/views/themes/avc1/partials/footer.blade.php)10blade
        Params
        0
        obLevel
        1
        __env
        2
        app
        3
        smallsliders
        4
        errors
        5
        post
        6
        categories
        7
        __currentLoopData
        8
        category
        9
        loop
      • menufooter (resources/views/menufooter.blade.php)2blade
        Params
        0
        items
        1
        options
      • voyager::menu.default (vendor/tcg/voyager/resources/views/menu/default.blade.php)15blade
        Params
        0
        obLevel
        1
        __env
        2
        app
        3
        smallsliders
        4
        errors
        5
        items
        6
        options
        7
        __currentLoopData
        8
        item
        9
        loop
        10
        originalItem
        11
        isActive
        12
        styles
        13
        icon
        14
        alerts
      • voyager::menu.default (vendor/tcg/voyager/resources/views/menu/default.blade.php)15blade
        Params
        0
        obLevel
        1
        __env
        2
        app
        3
        smallsliders
        4
        errors
        5
        items
        6
        options
        7
        __currentLoopData
        8
        item
        9
        loop
        10
        originalItem
        11
        isActive
        12
        styles
        13
        icon
        14
        alerts
      • voyager::menu.default (vendor/tcg/voyager/resources/views/menu/default.blade.php)15blade
        Params
        0
        obLevel
        1
        __env
        2
        app
        3
        smallsliders
        4
        errors
        5
        items
        6
        options
        7
        __currentLoopData
        8
        item
        9
        loop
        10
        originalItem
        11
        isActive
        12
        styles
        13
        icon
        14
        alerts
      • voyager::menu.default (vendor/tcg/voyager/resources/views/menu/default.blade.php)15blade
        Params
        0
        obLevel
        1
        __env
        2
        app
        3
        smallsliders
        4
        errors
        5
        items
        6
        options
        7
        __currentLoopData
        8
        item
        9
        loop
        10
        originalItem
        11
        isActive
        12
        styles
        13
        icon
        14
        alerts
      • themes.avc1.partials.rocket-menu (resources/views/themes/avc1/partials/rocket-menu.blade.php)10blade
        Params
        0
        obLevel
        1
        __env
        2
        app
        3
        smallsliders
        4
        errors
        5
        post
        6
        categories
        7
        __currentLoopData
        8
        category
        9
        loop
      uri
      GET news/{slug}
      middleware
      web
      controller
      App\Http\Controllers\PostsController@show
      namespace
      App\Http\Controllers
      prefix
      where
      file
      app/Http/Controllers/PostsController.php:47-55
      4 statements were executed2.28ms
      avc_staging_db
      • select * from `categories`
        400μs/app/Http/Controllers/PostsController.php:17avc_staging_db
        Metadata
        Backtrace
        • 12. /app/Http/Controllers/PostsController.php:17
        • 14. /vendor/laravel/framework/src/Illuminate/Container/Container.php:843
        • 15. /vendor/laravel/framework/src/Illuminate/Container/Container.php:681
        • 16. /vendor/laravel/framework/src/Illuminate/Foundation/Application.php:785
        • 17. /vendor/laravel/framework/src/Illuminate/Container/Container.php:629
      • select * from `posts` where `slug` = 'unlike-others-arecont-vision-megapixel-cameras-cannot-be-maliciously-repurposed-for-use-in-cyberattacks' and `status` = 'PUBLISHED' limit 1
        910μs/app/Http/Controllers/PostsController.php:51avc_staging_db
        Metadata
        Bindings
        • 0. unlike-others-arecont-vision-megapixel-cameras-cannot-be-maliciously-repurposed-for-use-in-cyberattacks
        • 1. PUBLISHED
        Backtrace
        • 16. /app/Http/Controllers/PostsController.php:51
        • 19. /vendor/laravel/framework/src/Illuminate/Routing/ControllerDispatcher.php:45
        • 20. /vendor/laravel/framework/src/Illuminate/Routing/Route.php:219
        • 21. /vendor/laravel/framework/src/Illuminate/Routing/Route.php:176
        • 22. /vendor/laravel/framework/src/Illuminate/Routing/Router.php:681
      • select * from `categories` where `categories`.`id` = 2 limit 1
        620μsview::themes.avc1.single:26avc_staging_db
        Metadata
        Bindings
        • 0. 2
        Backtrace
        • 20. view::themes.avc1.single:26
        • 22. /vendor/laravel/framework/src/Illuminate/View/Engines/CompilerEngine.php:59
        • 23. /vendor/laravel/framework/src/Illuminate/View/View.php:143
        • 24. /vendor/laravel/framework/src/Illuminate/View/View.php:126
        • 25. /vendor/laravel/framework/src/Illuminate/View/View.php:91
      • select * from `settings` order by `order` asc
        350μs/vendor/tcg/voyager/src/Voyager.php:238avc_staging_db
        Metadata
        Backtrace
        • 14. /vendor/tcg/voyager/src/Voyager.php:238
        • 15. /vendor/laravel/framework/src/Illuminate/Support/Facades/Facade.php:261
        • 16. /vendor/tcg/voyager/src/Helpers/helpers.php:6
        • 19. /vendor/laravel/framework/src/Illuminate/View/Engines/CompilerEngine.php:59
        • 20. /vendor/laravel/framework/src/Illuminate/View/View.php:143
      TCG\Voyager\Models\Setting
      20
      App\Category
      1
      App\Post
      1
          _token
          dEL7PmWZu5AnQAIekKslGOjL9N9UqOsQYF0uNHbj
          _previous
          array:1 [ "url" => "https://avcstaging.arecontvisioncostar.com/news/unlike-others-arecont-vision-m...
          _flash
          array:2 [ "old" => [] "new" => [] ]
          PHPDEBUGBAR_STACK_DATA
          []
          path_info
          /news/unlike-others-arecont-vision-megapixel-cameras-cannot-be-maliciously-repurposed-for-use-in-cyberattacks
          status_code
          200
          status_text
          OK
          format
          html
          content_type
          text/html; charset=UTF-8
          request_query
          []
          request_request
          []
          request_headers
            0 of 0   
          array:24 [
  "cf-ipcountry" => array:1 [
    0 => "US"
  ]
  "cf-connecting-ip" => array:1 [
    0 => "18.224.23.12"
  ]
  "cdn-loop" => array:1 [
    0 => "cloudflare; loops=1"
  ]
  "sec-fetch-site" => array:1 [
    0 => "none"
  ]
  "accept" => array:1 [
    0 => "text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7"
  ]
  "user-agent" => array:1 [
    0 => "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)"
  ]
  "upgrade-insecure-requests" => array:1 [
    0 => "1"
  ]
  "sec-ch-ua-platform" => array:1 [
    0 => ""Windows""
  ]
  "sec-ch-ua-mobile" => array:1 [
    0 => "?0"
  ]
  "sec-ch-ua" => array:1 [
    0 => ""Chromium";v="130", "HeadlessChrome";v="130", "Not?A_Brand";v="99""
  ]
  "cache-control" => array:1 [
    0 => "no-cache"
  ]
  "pragma" => array:1 [
    0 => "no-cache"
  ]
  "sec-fetch-dest" => array:1 [
    0 => "document"
  ]
  "cf-ray" => array:1 [
    0 => "93d0a7c688d3e260-SJC"
  ]
  "accept-encoding" => array:1 [
    0 => "gzip, br"
  ]
  "priority" => array:1 [
    0 => "u=0, i"
  ]
  "sec-fetch-user" => array:1 [
    0 => "?1"
  ]
  "sec-fetch-mode" => array:1 [
    0 => "navigate"
  ]
  "cf-visitor" => array:1 [
    0 => "{"scheme":"https"}"
  ]
  "connection" => array:1 [
    0 => "close"
  ]
  "x-forwarded-proto" => array:1 [
    0 => "https"
  ]
  "x-forwarded-for" => array:1 [
    0 => "18.224.23.12, 172.69.22.59"
  ]
  "x-server-addr" => array:1 [
    0 => "159.65.79.202"
  ]
  "host" => array:1 [
    0 => "avcstaging.arecontvisioncostar.com"
  ]
]
          request_server
            0 of 0   
          array:55 [
  "USER" => "avcstaging"
  "HOME" => "/home/avcstaging"
  "SCRIPT_NAME" => "/index.php"
  "REQUEST_URI" => "/news/unlike-others-arecont-vision-megapixel-cameras-cannot-be-maliciously-repurposed-for-use-in-cyberattacks"
  "QUERY_STRING" => ""
  "REQUEST_METHOD" => "GET"
  "SERVER_PROTOCOL" => "HTTP/1.0"
  "GATEWAY_INTERFACE" => "CGI/1.1"
  "REDIRECT_URL" => "/news/unlike-others-arecont-vision-megapixel-cameras-cannot-be-maliciously-repurposed-for-use-in-cyberattacks"
  "REMOTE_PORT" => "36108"
  "SCRIPT_FILENAME" => "/home/avcstaging/webapps/app-avcstaging/public/index.php"
  "SERVER_ADMIN" => "you@example.com"
  "CONTEXT_DOCUMENT_ROOT" => "/home/avcstaging/webapps/app-avcstaging/public/"
  "CONTEXT_PREFIX" => ""
  "REQUEST_SCHEME" => "http"
  "DOCUMENT_ROOT" => "/home/avcstaging/webapps/app-avcstaging/public/"
  "REMOTE_ADDR" => "172.69.22.59"
  "SERVER_PORT" => "80"
  "SERVER_ADDR" => "127.0.0.1"
  "SERVER_NAME" => "avcstaging.arecontvisioncostar.com"
  "SERVER_SOFTWARE" => "Apache/2.4.62 (Unix) OpenSSL/1.0.2g"
  "SERVER_SIGNATURE" => ""
  "LD_LIBRARY_PATH" => "/RunCloud/Packages/apache2-rc/lib"
  "PATH" => "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin"
  "HTTP_CF_IPCOUNTRY" => "US"
  "HTTP_CF_CONNECTING_IP" => "18.224.23.12"
  "HTTP_CDN_LOOP" => "cloudflare; loops=1"
  "HTTP_SEC_FETCH_SITE" => "none"
  "HTTP_ACCEPT" => "text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7"
  "HTTP_USER_AGENT" => "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)"
  "HTTP_UPGRADE_INSECURE_REQUESTS" => "1"
  "HTTP_SEC_CH_UA_PLATFORM" => ""Windows""
  "HTTP_SEC_CH_UA_MOBILE" => "?0"
  "HTTP_SEC_CH_UA" => ""Chromium";v="130", "HeadlessChrome";v="130", "Not?A_Brand";v="99""
  "HTTP_CACHE_CONTROL" => "no-cache"
  "HTTP_PRAGMA" => "no-cache"
  "HTTP_SEC_FETCH_DEST" => "document"
  "HTTP_CF_RAY" => "93d0a7c688d3e260-SJC"
  "HTTP_ACCEPT_ENCODING" => "gzip, br"
  "HTTP_PRIORITY" => "u=0, i"
  "HTTP_SEC_FETCH_USER" => "?1"
  "HTTP_SEC_FETCH_MODE" => "navigate"
  "HTTP_CF_VISITOR" => "{"scheme":"https"}"
  "HTTP_CONNECTION" => "close"
  "HTTP_X_FORWARDED_PROTO" => "https"
  "HTTP_X_FORWARDED_FOR" => "18.224.23.12, 172.69.22.59"
  "HTTP_X_SERVER_ADDR" => "159.65.79.202"
  "HTTP_HOST" => "avcstaging.arecontvisioncostar.com"
  "HTTPS" => "on"
  "REDIRECT_STATUS" => "200"
  "REDIRECT_HTTPS" => "on"
  "FCGI_ROLE" => "RESPONDER"
  "PHP_SELF" => "/index.php"
  "REQUEST_TIME_FLOAT" => 1746788030.5428
  "REQUEST_TIME" => 1746788030
]
          request_cookies
          []
          response_headers
            0 of 0   
          array:7 [
  "content-type" => array:1 [
    0 => "text/html; charset=UTF-8"
  ]
  "cache-control" => array:1 [
    0 => "private, must-revalidate"
  ]
  "date" => array:1 [
    0 => "Fri, 09 May 2025 10:53:50 GMT"
  ]
  "pragma" => array:1 [
    0 => "no-cache"
  ]
  "expires" => array:1 [
    0 => -1
  ]
  "set-cookie" => array:2 [
    0 => "XSRF-TOKEN=eyJpdiI6IkxXWEkzVStMSFh2N1BROGU3VXhid3c9PSIsInZhbHVlIjoicExHXC9UaEtqRmpLVEp6UUN6T2tvMWM1WjdJR1dUd3pZdTZvRjhaSEJDWG1ZUmZuNkpMSkhFMVwvdng5UGpIYjdVR1NEdklhT1p0TG5SSGxhejY4RElwTFl2b3dmNzJxSEVjYk5WWEE3WWtPOWpEVFdLdDI4aHV5WUMyb1pWVUFcL3oiLCJtYWMiOiJjMzIyN2VjNDBlZWM0MjNjZWRhOTg0YjI3YTE1NDMwM2Q2ODFmMTdlNDUzOGYwMDI3ZGU1YjBiNGE1MDc1OWZiIn0%3D; expires=Fri, 09-May-2025 12:53:50 GMT; Max-Age=7200; path=/XSRF-TOKEN=eyJpdiI6IkxXWEkzVStMSFh2N1BROGU3VXhid3c9PSIsInZhbHVlIjoicExHXC9UaEtqRmpLVEp6UUN6T2tvMWM1WjdJR1dUd3pZdTZvRjhaSEJDWG1ZUmZuNkpMSkhFMVwvdng5UGpIYjdVR1NEd"
    1 => "avcostar_session=eyJpdiI6ImE4UjlSUnpQTDVkMFBKbmhkT1dJQUE9PSIsInZhbHVlIjoiZ2tYUUE5S2ZhN3NEekNYU3NLQ1wvdEJTM1BZXC8xbWRZQU1FK0ZoUVBwNnJaSU4zTXErK0lweTcwakpMWHN6VVJmdmRkcW5XNXRjYUtRcEdHVjBvU3kwRXlOaXEybzVuV2pMOGtySEV3WHB1cUFHM2k5anJHNmRlVW5RMFdZckhqaiIsIm1hYyI6IjI5MTc0YTkwZmY4Y2QzYjBlMWVlMDM3MmYyMzFhZjE5ODRmZmIwMGYyNzc3MWUyODZjYWJkNGQ4NDhmMTJlMzYifQ%3D%3D; expires=Fri, 09-May-2025 12:53:50 GMT; Max-Age=7200; path=/; httponlyavcostar_session=eyJpdiI6ImE4UjlSUnpQTDVkMFBKbmhkT1dJQUE9PSIsInZhbHVlIjoiZ2tYUUE5S2ZhN3NEekNYU3NLQ1wvdEJTM1BZXC8xbWRZQU1FK0ZoUVBwNnJaSU4zTXErK0lweTcwakpMWHN6VVJ"
  ]
  "Set-Cookie" => array:2 [
    0 => "XSRF-TOKEN=eyJpdiI6IkxXWEkzVStMSFh2N1BROGU3VXhid3c9PSIsInZhbHVlIjoicExHXC9UaEtqRmpLVEp6UUN6T2tvMWM1WjdJR1dUd3pZdTZvRjhaSEJDWG1ZUmZuNkpMSkhFMVwvdng5UGpIYjdVR1NEdklhT1p0TG5SSGxhejY4RElwTFl2b3dmNzJxSEVjYk5WWEE3WWtPOWpEVFdLdDI4aHV5WUMyb1pWVUFcL3oiLCJtYWMiOiJjMzIyN2VjNDBlZWM0MjNjZWRhOTg0YjI3YTE1NDMwM2Q2ODFmMTdlNDUzOGYwMDI3ZGU1YjBiNGE1MDc1OWZiIn0%3D; expires=Fri, 09-May-2025 12:53:50 GMT; path=/XSRF-TOKEN=eyJpdiI6IkxXWEkzVStMSFh2N1BROGU3VXhid3c9PSIsInZhbHVlIjoicExHXC9UaEtqRmpLVEp6UUN6T2tvMWM1WjdJR1dUd3pZdTZvRjhaSEJDWG1ZUmZuNkpMSkhFMVwvdng5UGpIYjdVR1NEd"
    1 => "avcostar_session=eyJpdiI6ImE4UjlSUnpQTDVkMFBKbmhkT1dJQUE9PSIsInZhbHVlIjoiZ2tYUUE5S2ZhN3NEekNYU3NLQ1wvdEJTM1BZXC8xbWRZQU1FK0ZoUVBwNnJaSU4zTXErK0lweTcwakpMWHN6VVJmdmRkcW5XNXRjYUtRcEdHVjBvU3kwRXlOaXEybzVuV2pMOGtySEV3WHB1cUFHM2k5anJHNmRlVW5RMFdZckhqaiIsIm1hYyI6IjI5MTc0YTkwZmY4Y2QzYjBlMWVlMDM3MmYyMzFhZjE5ODRmZmIwMGYyNzc3MWUyODZjYWJkNGQ4NDhmMTJlMzYifQ%3D%3D; expires=Fri, 09-May-2025 12:53:50 GMT; path=/; httponlyavcostar_session=eyJpdiI6ImE4UjlSUnpQTDVkMFBKbmhkT1dJQUE9PSIsInZhbHVlIjoiZ2tYUUE5S2ZhN3NEekNYU3NLQ1wvdEJTM1BZXC8xbWRZQU1FK0ZoUVBwNnJaSU4zTXErK0lweTcwakpMWHN6VVJ"
  ]
]
          session_attributes
            0 of 0   
          array:4 [
  "_token" => "dEL7PmWZu5AnQAIekKslGOjL9N9UqOsQYF0uNHbj"
  "_previous" => array:1 [
    "url" => "https://avcstaging.arecontvisioncostar.com/news/unlike-others-arecont-vision-megapixel-cameras-cannot-be-maliciously-repurposed-for-use-in-cyberattacks"
  ]
  "_flash" => array:2 [
    "old" => []
    "new" => []
  ]
  "PHPDEBUGBAR_STACK_DATA" => []
]