In-depth security testing of a Smart Camera across physical, network, and API threat vectors.
Multiple critical vulnerabilities discovered and resolved, including access to video footage and backend infrastructure compromise.
Client engaged the KEEP-IT-SECURE-24 service to ensure continuous security monitoring of other solutions.
A leading performance analysis company operating in a global geography, introducing the latest technologies in its industry to achieve insightful data from camera real time video streaming.
As an industry leader, the client strives to introduce the latest technologies in its industry in order to achieve insightful data from camera real time video streaming. The process used to capture video and execute analysis relies on the geographical distribution of cameras that sometimes might not be connected to trusted environments.
The client asked Devoteam Cyber Trust to subject their star product, a Smart Camera, to in-depth security testing.
A Pentest project was conducted considering multiple threat vectors:
Techniques included hardware research, boot subversion, Wi-Fi enrolment tests, SSD extraction, Ethernet interception, alternative OS boot via Micro SD-Card, and MiTM via CA installation.
The Pentest project helped the client to understand the risks that the solution posed and enabled the resolution of vulnerabilities, preventing them from being used by real attackers to impact the organisation or solution users.
Confronted with the detailed results, the client perceived the value of continuous security monitoring and engaged with the KEEP-IT-SECURE-24 Service for several other solutions.
Partner with Devoteam Cyber Trust to gain expert-led cybersecurity assessments and a culture of continuous risk improvement.
→ Get in touch