<June 2024>





How to secure your Dahua recorders against Online Attacks

Monday 02 October 2017

A few months ago, a loophole was discovered in the firmware of some of the recording equipment manufactured by Dahua. This loophole, in the less recent versions, could potentially be used to access and install malicious software, especially in those recorders which still use the default username and password or where the new password is way too simple.

cabecera coaxial 

As a result, the manufacturer launched a series of new firmware for all compromised devices, thereby solving the problem by updating the recorders to a new version of firmware and changing the passwords to less predictable ones.

At the beginning of July 2017, a new attack was detected, this time affecting devices with a non-current firmware and also taking advantage of the more uncomplicated passwords. The result of this new attack is far more visual since it replaces the name of each of the recorders video channels with the word Hacked.


During September 2017 a new wave of this same attack has emerged which is infecting devices which still haven’t had their security measures updated as recommended.


In case you have a recorder which has been affected by a malware attack from the Internet, the steps to solve the problem are:

  • Access the recorder and from the Setup section go to > System> Default, and return the recorder to the factory default settings.
  • In case some channels are still showing “Hacked”, then you should go through each of the configuration menus and select the Default option, this will reset that section’s parameters, then press Save.
  • Ask for email the latest firmware for the recorder model in question and update the recorder from the Configuration section go to > System> Update
  • With the firmware updated and after restarting, return the recorder again to the factory default settings.
  • Set a non-predictable password for all users, ensure that this has sufficient length (at least 8 characters) and complexity (mix numbers and letters).
  • It is important to repeat the previous step and reset the passwords even for local users (especially the default 888888 non-admin user) and it is also advisable to eliminate any users which will not be used.
  • If your Router has any open IP ports, make sure that they are only the ones which are absolutely necessary. Also modify any default port numbers, especially port 37777.
Inserito da:
Inserito da:
Inserito da:
Powered by Passepartout
(function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){ (i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o), m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m) })(window,document,'script','//www.google-analytics.com/analytics.js','ga'); ga('create', 'UA-57901047', 'auto'); ga('send', 'pageview');