Your IT Consultant

Information Technology Blog
by John W. Simek, Vice President of Sensei Enterprises, Inc.

New Target for Ransomware – DSLR Cameras

August 14, 2019

It was just a matter of time before ransomware attacks moved from our computers to other devices. Researchers from CheckPoint released a report detailing how an attacker could install ransomware on a DSLR camera by using the Picture Transfer Protocol. The vulnerability was found in the firmware of Canon cameras and can be exploited over USB and Wi-Fi connections. The flaw impacts Canon EOS-series digital SLR and mirrorless cameras, PowerShot SX740 HS, PowerShot SX70 HS, and PowerShot G5X Mark II models.

The vulnerabilities allow an attacker to install malicious malware on a target camera over Wi-Fi without any user interaction. The attacker could then encrypt your photos and hold them hostage until you paid a ransom. Canon is working on a fix, but the recommendation is to turn off Wi-Fi. A good practice is to remove the memory card and insert it in a card reader attached to a computer for photo transfer. Let's just hope the auto manufacturers have locked down unauthorized connections to our vehicles.

Email: Phone: 703.359.0700
Digital Forensics/Cybersecurity/Information Technology
https://www.linkedin.com/in/johnsimek
https://amazon.com/author/johnsimek
https://senseient.com