Security researchers have observed renewed exploit campaigns targeting an eight-year-old backdoor in Hikvision cameras to harvest configuration files, user lists, and snapshots.
Attackers automate scans across IP ranges, appending a base64-encoded “auth” parameter to management URLs.
When decoded, the string commonly reveals “admin:11,” enabling unauthorized access. Organizations relying on older camera firmware are at heightened risk of data leakage.
https://gbhackers.com/hackers-exploit-h ... mera-flaw/