Dahua Technology Ltd

In August, a Distributed Denial of Service (DDoS) attack occurred due to a massive botnet created by malware named Mirai. This attack was caused by vulnerabilities in a large number of IoT devices, such as security cameras and DVRs using default credentials. Dahua’s products were initially named as the victims of the hacking and the source of these DDOS attacks in reports by research firm Level 3 Communications, the Wall Street Journal, and industry trade publications.

A subsequent report by cybersecurity research firm Flashpoint was issued on October 7, confirming that the Mirai DDoS attacks originated primarily from devices manufactured by another video surveillance vendor, and not Dahua. The Flashpoint report prompted a series of headlines that downgraded Dahua devices’ involvement in causing the attacks, by Forbes.com, Network Security News, and SecurityWeek.  

Acknowledging vulnerabilities

Here is a statement issued by Dahua: “We acknowledge the vulnerabilities that some of our pre-2015 cameras and DVRs have used default usernames and passwords. This may have caused exposure to risks when the devices are exposed to the Internet without firewall protection. Dahua has taken steps to resolve this vulnerability and offer solutions. Keeping our customers informed of any threats or potential risks is a priority."

To address any potential issues,
Dahua has firmware updates
available on the Dahua Wiki,
and a dedicated channel for
customers to ask questions
about cybersecurity 

To address any potential issues, Dahua has firmware updates available on the Dahua Wiki, and a dedicated channel for customers to ask questions about cybersecurity or report suspected vulnerabilities (cybersecurity@global.dahuatech.com).

Cybersecurity best practices

The company’s statement continues: “We continue to remind our customers that it is crucial to select strong passwords, keep firmware updated, and only forward ports their devices actually need. We strongly recommend that our customers and partners review our list of cybersecurity best practices on our website

Specific to this issue, Dahua is offering replacement discounts as a gesture of goodwill to customers who wish to replace pre-January 2015 models. End users can bring such products to an authorised Dahua dealer, where a technical evaluation will be performed to determine eligibility, according to the company.

Above all, securing our customers' assets and protecting their Dahua products is of the utmost importance to us,” the company states. “We continue our commitment to work with our customers and partners to make our products and solutions as secure as possible.”

Download PDF version

Dahua Technology Ltd case studies

Case studies
Dahua Smart IoT Industrial Park uses integrated security technology for enhanced productivity

To grasp the current manufacturing trends and seize the Zeitgeist of Industry 4.0, a new smart IoT industrial park in Hangzhou has been put to use by Dahua Technology, a video surveillance solution provider. Dahua Smart (IoT) Industrial Park occupies in total 512 acres in Fuyang district of Hangzhou, about 20 minutes’ drive from Dahua headquarters, designed to host 6000 staff (by 2017, 4500 people have been working/living in the 262 acres of phase one area). With topnotch technologies, pe...

Case studies
Dahua delivers surveillance solution for Turkey's Sinan Erdem Dome

The Sinan Erdem Dome is the largest multi-purpose indoor venue in Turkey. Located in Istanbul, the dome has a seating capacity of up to 22,500, and hosts a number of events, including concerts, tennis matches, and basketball games. Strengthening stadium security Upon being chosen to host a number of games during the European Basketball Championships 2017, the chief European men’s international basketball competition held biannually, the Sinan Erdem Dome looked to strengthen their securit...

Case studies
Dahua secures G20 summit to ensure smooth running and safety of officials

The G20 Summit is an annual meeting of leaders from 20 major economies to discuss global issues. In 2016, China hosted its first-ever G20 forum in the south-eastern city of Hangzhou. Securing the leaders of multiple countries is no easy task, and would require many months of preparation by thousands of labourers in order to ensure the two-day forum, transportation, and cultural activities ran smoothly. China’s largest security project The G20 World Summit was one of the largest security...