Hi, Came across this video whilst researching vulnerabilitys among embedded devices for work. Its a technical talk but interesting none the less.
To give you an idea of the security on some of these embedded devices, My CCTV Security Camera system has a HARDCODED default username of root and password of 123456. This isn't the username and password to view the footage, This is the username and password to connect directly to the device via telnet. (Think MS-DOS prompt) The only thing stopping the $300 recorder becoming an expensive brick? Nobody has typed:. telnet <my-IP-Address>:23 -l root password:123456 rm -rf / I'd love to say this device is one of a kind, sadly its not. showdan.io is literally the security professionals version of google. Its specifically designed for sniffing out these kinds of devices. ** Device is no longer networked - Don't bother trying.**