It’s come to my attention after doing some net diving recently that IP security cameras from Chinese owned companies have built in backdoors, audits of cameras sourced from Chi-com manufacturers found at secure facilities were at risk of being targeted by hackers.
I personally like some of the products from HIKVision, at least going by paper specs they are better than Lorrex and many familiar names in the US market. Short term, the guidance seems to be if these products sourced from Chinese companies are to be used, they should be air gapped and not interface with any outside networks.
Some of the challenges in identifying these products is that they can be from questionable sources and white-boxed, IE: sold under a known brand with a different label or packaging. The code driving it underneath could still be compromised.
It doesn’t end there, supply chain poisoning could extend beyond just security cameras I mentioned, baby monitors and much more.
I don’t either but I see a lot of businesses and homes being very relaxed about their view of network aware things being allowed to access. I have had a lot of discussions lately with some friends that are considering security options for their homes and businesses, the common theme seems to be not spending money on it and being blissfully unaware of the consequences of cutting corners.
I got to thinking about it again this morning because of the sourcing of mini PC’s that have GPS & Wifi radio’s and microphones built into them that come from companies like Beelink, a Chi-com company are becoming more prevalent.
You can airgap the cameras into an NVR (Frigate?) and use something like Home Assistant to send you alerts if that’s what you want to do. That’s kind of my plan.
Regarding the mini-PC, some are reputable and don’t have spyware installed, some have malware/virus installed. Generally you need to scan the drive before you boot them (Ace Magic) or wipe them and install the OS from scratch with known good sources. My little AWOW PC I do not trust, it has a different drive installed and Linux running, my Mele seem to be fine, I’ve scanned them and they seem to be OK, I also don’t see any odd traffic coming out of them.
I’d say verify then trust, not the other way around!