A look behind the lens. [Research Saturday]

CyberWire Daily

N2K Networks, Inc.

Daily News, Tech News, News, Technology

4.6 • 1K Ratings

🗓️ 25 October 2025

⏱️ 27 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Noam Moshe, Claroty’s Vulnerability Research Team Lead, joins Dave to discuss Team 82's work on "Turning Camera Surveillance on its Axis." Team82 disclosed four vulnerabilities in Axis.Remoting—deserialization, a MiTM “pass-the-challenge” NTLMSSP flaw, and an unauthenticated fallback HTTP endpoint—that enable pre-auth remote code execution against Axis Device Manager and Axis Camera Station. They found more than 6,500 Axis.Remoting services exposed online (over half in the U.S.), letting attackers enumerate targets, install malicious Axis packages, and hijack, view, or shut down managed camera fleets.Axis published an urgent advisory, issued patches for ADM 5.32, Camera Station 5.58 and Camera Station Pro 6.9, accepted Team82’s disclosure, and organizations are urged to update. The research can be found here: Turning Camera Surveillance on its Axis Learn more about your ad choices. Visit megaphone.fm/adchoices

Transcript

Click on a timestamp to play from that location

0:00.0	You're listening to the Cyberwire Network, powered by N2K.
0:09.7	Are you ready for AI in cybersecurity?
0:17.2	Demand for these skills is growing exponentially for cybersecurity professionals.
0:22.5	It's why Comptia,
0:29.6	the largest vendor-neutral certification authority, is developing SEC AI Plus. It's their first ever AI certification focused on artificial intelligence and cybersecurity and is designed to help
0:35.2	mid-career cybersecurity professionals demonstrate their competencies with AI tools.
0:41.0	And that's why N2K's SEC AI Plus practice exam is coming out this year to help you prepare for this certification release in 2026.
0:50.1	To find out more about this new credential and how N2K can help you prepare today,
0:55.0	check out our blog at certify.cybervista.net slash blog.
1:01.6	And thanks.
1:06.3	At Talas, they know cybersecurity can be tough and you can't protect everything,
1:15.7	but with TALIS you can secure what matters most.
1:19.3	With TALIS's industry-leading platforms, you can protect critical applications,
1:23.9	data and identities, anywhere and at scale with the highest ROI.
1:28.9	That's why the most trusted brands and largest banks, retailers, and healthcare companies in the world
1:34.5	rely on TALIS to protect what matters most.
1:38.1	Applications, data, and identity.
1:40.7	That's TALIS.
1:42.1	T-H-A-L-E-S.
1:43.9	Learn more at TALISgroup.com slash cyber.
1:48.0	Hello, and welcome to the CyberWires Research Saturday.
2:04.5	I'm Dave Bittner, and this is our weekly conversation with researchers and analysts tracking
	...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from N2K Networks, Inc., and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of N2K Networks, Inc. and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.