LG surveillance cameras are vulnerable to remote attacks due to a recently discovered vulnerability. However, it has become known that they will not receive patches.
Last week, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) reported a vulnerability in LG Innotek LNV5110R cameras that allows for authentication bypass, enabling attackers to gain administrative access to the device.
The issue has been identified as CVE-2025-7742 and allows an attacker to upload data to the non-volatile storage of the device via an HTTP POST request, ultimately leading to remote code execution with elevated privileges.
CISA emphasized that the vulnerable cameras are used worldwide, including in the critical infrastructure of many commercial facilities.
Experts have notified representatives of LG Innotek about the issue; however, the manufacturer stated that the vulnerability cannot be patched because the product’s lifecycle has already ended.
Cybersecurity specialist Souvik Kandar from MicroSec, who is credited by CISA with discovering the vulnerability, reported that around 1,300 cameras can now be found online, which may be remotely hacked.
According to the researcher, attackers can exploit the vulnerability to gain access to live streams, disable the camera, and perform other malicious actions.
“This is an unauthenticated remote code execution vulnerability,” explained Kandar. “Attackers can upload a reverse shell without logging in, gain administrator privileges, execute arbitrary Linux commands, and use the device as a launch pad for infiltrating internal company networks.”
2025.04.10 — April updates released by Microsoft cause issues with Windows Hello
Microsoft warns that some Windows users who have installed the April updates might be unable to login to their Windows services using Windows Hello facial recognition…
Full article →
2025.02.10 — Failed attempt to block phishing link results in massive Cloudflare outage
According to the incident report released by Cloudflare, an attempt to block a phishing URL on the R2 platform accidentally caused a massive outage; as a result, many Cloudflare…
Full article →
2025.01.30 — Hackers use vulnerabilities in SimpleHelp RMM to attack corporate networks
Experts believe that recently patched vulnerabilities in SimpleHelp Remote Monitoring and Management (RMM) were used by attackers to gain initial access to corporate networks. A number…
Full article →
2025.03.12 — Mass exploitation of PHP-CGI vulnerability in attacks targeting Japanese companies
GreyNoise and Cisco Talos experts warn that hackers are actively exploiting CVE-2024-4577, a critical PHP-CGI vulnerability that was discovered and fixed in early June 2024. CVE-2024-457…
Full article →
2025.03.07 — YouTube warns of scam video featuring its CEO
According to YouTube, scammers use an AI-generated video of the company's CEO in phishing attacks to steal user credentials. The scammers attack content creators by sending them…
Full article →
2025.01.27 — YouTube plays hour-long ads to users with ad blockers
Users complain that YouTube plays very long unskippable ads. Sometimes such ads are longer than the video the person is watching. The issue was raised…
Full article →
2025.04.22 — Scammers pose as FBI IC3 specialists, offer 'assistance' to fraud victims
According to the FBI, scammers impersonating employees of the FBI Internet Fraud Complaint Center (IC3) contact fraud victims offering them 'assistance' in getting their money…
Full article →
2025.02.06 — Let's Encrypt to stop sending expiration notification emails
The nonprofit organization announced that, starting June 4, 2025, it will stop sending expiration notification emails to subscribers. The primary reason behind this decision…
Full article →
2025.02.12 — 2.8 million IP addresses used to brute-force network devices
The Shadowserver Foundation warns of a massive web login brute-forcing attacks targeting nearly 2.8 million IP addresses per day. Unknown attackers are seeking…
Full article →
2025.04.30 — Coinbase fixes 2FA bug that made customers panic
Cryptocurrency exchange Coinbase has fixed a bug in its Account Activity logs that caused customers to think their credentials were compromised. Earlier this month, BleepingComputer…
Full article →