Endpoint/Device Security, Vulnerability Management

Old TBK, MVPower DVR vulnerabilities experiencing exploitation spikes

Exploitations of years-old unpatched vulnerabilities in TBK and MVPower digital video recording devices have significantly increased during the past week, BleepingComputer reports. More than 50,000 attempts have been conducted to exploit the critical TBK DVR vulnerability, tracked as CVE-2018-9995, which affects TBK DVR4104 and TBK DVR4216, as well as their rebranded versions, last month, according to a Fortinet report. Such a flaw could be leveraged to achieve authentication bypass and network access. "With tens of thousands of TBK DVRs available under different brands, publicly available PoC code, and an easy-to-exploit makes this vulnerability an easy target for attackers. The recent spike in IPS detections shows that network camera devices remain a popular target for attackers," said Fortinet. Meanwhile, threat actors have launched nearly 40,000 attempts to exploit a critical remote code execution vulnerability, tracked as CVE-2016-20016, affecting MVPower TV-7104HE and TV-7108HE DVR models. With fixes for both vulnerabilities still unavailable, users have been urged to immediately replace such systems.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.