Hello, welcome to the Friday, June 16th, 2017 edition of the Santernat Storm Center's Stormcast.

My name is Johannes Ulrich, and I'm recording from Jacksonville, Florida.

Now, we certainly know that hacking a lot of wireless access points isn't all that difficult.

Often it just takes a weak admin password or a simple web

remote code execution vulnerability. Given that there's a lot of interest from hackers in these

access points, it's no surprise that more advanced hackers like the CIA are interested in them as well.

So in its latest release Wikileaks did release documents about a project called Cherry Blossom.

This is part of the larger CIA leak from which Wikileaks has been releasing for a while.

Essentially, what is is a framework to install custom firmware on a variety of different

routers.

Now, these documents call a manipulated router a flytrap, and a flight trap is then able to for example record email

addresses, Mac addresses, voice over IP numbers and well all the other things that you typically

can do if you are flashing firmware on a wireless router.

Now quickly scanning the documents, I didn't really see any fundamentally new

exploit here. These are all pretty much well-known techniques that you do find in

many other hacker tools that are publicly available. And now here we go yet again

more vulnerabilities in DVRs.

PENT test partners released a report with a set of easily exploitable vulnerability

in more Xiam A DVRs.

Xiam A is manufacturing China that makes DVRs for a couple dozen different brands and their particular

DVR boards were one of the main victims of Mirai. So very likely that these systems are still

out there for these new vulnerability. There is no patch available at this point. Part of it is yet

...