Insecure by Design: IP cameras with default login credentials

Poster series: Insecure by Design: IP cameras with default login credentials

Featured companies: ACTi, American Dynamics, Avigilon, Axis, Basler, Brickcom, Canon, Cisco, Dahua, Digital Watchdog, DRS, DVTel, DynaColor, FLIR, FLIR (Dahua OEM), Foscam, GeoVision, Grandstream, Hikvision, Honeywell, Intellio, IQinVision, IPX-DDK, JVC, March Networks, Mobotix, Northern, Panasonic, Pelco Sarix, Pixord, Samsung Electronics, Samsung Techwin (old), Samsung (new), Sanyo, Scallop, Sentry360 (mini), Sony, Speco, Stardot, Starvedia, Trendnet, Toshiba, VideoIQ, Vivotek, Ubiquiti, Uniview, ValueVisionCam, W-Box, Wodsee.

Stop using default passwords!
Update your firmware regulary!

 

Raw Paste Data:

ACTi: admin/123456 or Admin/123456
American Dynamics: admin/admin or admin/9999
Arecont Vision: none
Avigilon: Previously admin/admin, changed to Administrator/<blank> in later firmware versions
Axis: Traditionally root/pass, new Axis cameras require password creation during first login (though root/pass may be used for ONVIF access)
Basler: admin/admin
Bosch: None required, but new firmwares (6.0+) prompt users to create passwords on first login
Brickcom: admin/admin
Canon: root/camera
Cisco: No default password, requires creation during first login
Dahua: admin/admin
Digital Watchdog: admin/admin
DRS: admin/1234
DVTel: Admin/1234
DynaColor: Admin/1234
FLIR: admin/fliradmin
FLIR (Dahua OEM): admin/admin
Foscam: admin/<blank>
GeoVision: admin/admin
Grandstream: admin/admin
Hikvision: Previously admin/12345, but firmware 5.3.0 and up requires unique password creation
Honeywell: admin/1234
Intellio: admin/admin
IQinVision: root/system
IPX-DDK: root/admin or root/Admin
JVC: admin/jvc
March Networks: admin/<blank>
Mobotix: admin/meinsm
Northern: Previously admin/12345, but firmware 5.3.0 and up requires unique password creation
Panasonic: Previously admin/12345, but firmware 2.40 requires username/password creation
Pelco Sarix: admin/admin
Pixord: admin/admin
Samsung Electronics: root/root or admin/4321
Samsung Techwin (old): admin/1111111
Samsung (new): Previously admin/4321, but new firmwares require unique password creation
Sanyo: admin/admin
Scallop: admin/password
Sentry360 (mini): admin/1234
Sentry360 (pro): none
Sony: admin/admin
Speco: admin/1234
Stardot: admin/admin
Starvedia: admin/<blank>
Trendnet: admin/admin
Toshiba: root/ikwd
VideoIQ: supervisor/supervisor
Vivotek: root/<blank>
Ubiquiti: ubnt/ubnt
Uniview: admin/123456
ValueVisionCam: admin/supersecret
W-Box: admin/wbox123
Wodsee: admin/<blank>

(Visited 462 times, 2 visits today)