{"id":48222,"date":"2022-08-30T14:57:33","date_gmt":"2022-08-30T14:57:33","guid":{"rendered":"https:\/\/packetstormsecurity.com\/news\/view\/33785\/ieGeek-Vulnerabilities-Still-Prevalent-In-2022.html"},"modified":"2022-08-30T14:57:33","modified_gmt":"2022-08-30T14:57:33","slug":"iegeek-vulnerabilities-still-prevalent-in-2022","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/iegeek-vulnerabilities-still-prevalent-in-2022\/","title":{"rendered":"ieGeek Vulnerabilities Still Prevalent In 2022"},"content":{"rendered":"<div class=\"inner-entry-content\">\n<p><strong><em>Amazon\u2019s \u201chighly rated\u201d ieGeek brand continues to present a number of security vulnerabilities.<\/em><\/strong><\/p>\n<p>On the 19th of Aug 2022 I set out to purchase a CCTV Camera from Amazon, I read over the reviews of the ieGeek IG20, and it seemed great, the value too. For just \u00a329.99 I\u2019d get myself a great looking CCTV Camera, packed full of features. It has night vision, Smartphone access, Motion Detection, Plug &amp; Play, It\u2019s waterproof and it can connect via WiFi or Ethernet. Great, I was sold. However, I failed to do any research on the brand specifically. <\/p>\n<p>The camera arrived the following day, and later that day I got around to setting it up. I first noticed that on the back of the camera, there was a sticker with a UID printed, along with a Factory default Username &amp; Password combination, consisting of admin\/admin. <\/p>\n<h2><span class=\"ez-toc-section\" id=\"ieGeek_IG20_IssuesVulnerabilities\"><\/span>ieGeek IG20 Issues\/Vulnerabilities<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<h3><span class=\"ez-toc-section\" id=\"UID_Weakness\"><\/span>UID Weakness<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>The UID appears to be predictable.The UID in our case, will look like this:<strong><em>&nbsp;<code>AAFF-123456-ABCDE<\/code><\/em><\/strong> \u2013 depending on the make and model.<\/p>\n<ul>\n<li><strong>UID p1<\/strong>:<em> Same 4 letters at the start.<\/em><\/li>\n<li><strong>UID p2:<\/strong> <em>6 numbers at random in the middle.<\/em><\/li>\n<li><strong>UID p3<\/strong>: <em>5 random letters at the end.<\/em><\/li>\n<\/ul>\n<p>Evidently, having just this basic knowledge of the UID and using the default credentials, the camera feed could be accessed using the software provided by ieGeek from their website by testing each UID value. This can leave a number of IP cameras vulnerable to unauthorised viewing with the privacy of users at risk.<\/p>\n<p>Below are some more vulnerable prefixes running the same crappy firmware.<\/p>\n<figure id=\"prefixes\" class=\"wp-block-table\">\n<table>\n<tbody>\n<tr><\/tr>\n<tr>\n<td>AAAA<\/td>\n<td>AABB<\/td>\n<td>AACC<\/td>\n<td>AAES<\/td>\n<td>AIPC<\/td>\n<\/tr>\n<tr>\n<td>AAFF<\/td>\n<td>BBBB<\/td>\n<td>CAM<\/td>\n<td>CAMERA<\/td>\n<td>CCCC<\/td>\n<\/tr>\n<tr>\n<td>DDDD<\/td>\n<td>DEAA<\/td>\n<td>EEEE<\/td>\n<td>ELSA<\/td>\n<td>ELSO<\/td>\n<\/tr>\n<tr>\n<td>ESCM<\/td>\n<td>ESN<\/td>\n<td>ESS<\/td>\n<td>EUA<\/td>\n<td>EYE<\/td>\n<\/tr>\n<tr>\n<td>FCARE<\/td>\n<td>FDTAA<\/td>\n<td>FFFF<\/td>\n<td>FOUS<\/td>\n<td>GCAM<\/td>\n<\/tr>\n<tr>\n<td>GCMN<\/td>\n<td>GGGG<\/td>\n<td>GKW<\/td>\n<td>HHHH<\/td>\n<td>HRXJ<\/td>\n<\/tr>\n<tr>\n<td>HSL<\/td>\n<td>HVC<\/td>\n<td>HWAA<\/td>\n<td>HZD<\/td>\n<td>HZDA<\/td>\n<\/tr>\n<tr>\n<td>HZDB<\/td>\n<td>HZDC<\/td>\n<td>HZDN<\/td>\n<td>HZDX<\/td>\n<td>HZDY<\/td>\n<\/tr>\n<tr>\n<td>HZDZ<\/td>\n<td>IIII<\/td>\n<td>ISRP<\/td>\n<td>JWEV<\/td>\n<td>MCI<\/td>\n<\/tr>\n<tr>\n<td>MDI<\/td>\n<td>MEIA<\/td>\n<td>MMMM<\/td>\n<td>MSE<\/td>\n<td>MSI<\/td>\n<\/tr>\n<tr>\n<td>MTE<\/td>\n<td>NIP<\/td>\n<td>NNNN<\/td>\n<td>NTP<\/td>\n<td>OBJ<\/td>\n<\/tr>\n<tr>\n<td>PHP<\/td>\n<td>PISR<\/td>\n<td>POLI<\/td>\n<td>PPCN<\/td>\n<td>PPPP<\/td>\n<\/tr>\n<tr>\n<td>PTP<\/td>\n<td>QSHV<\/td>\n<td>ROSS<\/td>\n<td>SECRUI<\/td>\n<td>SPCN<\/td>\n<\/tr>\n<tr>\n<td>SSAA<\/td>\n<td>SSSS<\/td>\n<td>SURE<\/td>\n<td>SXH<\/td>\n<td>TTTT<\/td>\n<\/tr>\n<tr>\n<td>UUUU<\/td>\n<td>VIEW<\/td>\n<td>VSTA<\/td>\n<td>VSTB<\/td>\n<td>VSTC<\/td>\n<\/tr>\n<tr>\n<td>VSTD<\/td>\n<td>VSTF<\/td>\n<td>WCAM<\/td>\n<td>WGKJ<\/td>\n<td>WHI<\/td>\n<\/tr>\n<tr>\n<td>WNR<\/td>\n<td>WNS<\/td>\n<td>WNV<\/td>\n<td>WWWW<\/td>\n<td>WXH<\/td>\n<\/tr>\n<tr>\n<td>WXO<\/td>\n<td>XCPTP<\/td>\n<td>XHA<\/td>\n<td>XLT<\/td>\n<td>XWL<\/td>\n<\/tr>\n<tr>\n<td>ZLD<\/td>\n<td>ZZZZ<\/td>\n<td>AVA<\/td>\n<td><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/figure>\n<h3><span class=\"ez-toc-section\" id=\"Unauthenticated_Default_auth_access_to_camera_stream_via_RTSP_protocol\"><\/span>Unauthenticated \/ Default auth access to camera stream via RTSP protocol <span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>By default, one can easily access the camera\u2019s stream externally or internally depending on your router\/network configuration, with our without means of Authentication.<\/p>\n<p><em><strong>Replace +IP+ with your local or external IP<\/strong><\/em>.<\/p>\n<p>Here is a screenshot of the Default RTSP settings, requiring Zero authentication.<\/p>\n<figure class=\"wp-block-image size-large\"><picture><source sizes=\"(max-width: 1024px) 100vw, 1024px\" type=\"image\/webp\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3-1024x346.png.webp 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3-300x101.png.webp 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3-768x259.png.webp 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3-400x135.png.webp 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3.png.webp 1200w\"><img loading=\"lazy\" width=\"1024\" height=\"346\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3-1024x346.png\" alt=\"image 3\" class=\"wp-image-9573 lazyload\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"p\" decoding=\"async\" data-sizes=\"auto\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3-1024x346.png 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3-300x101.png 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3-768x259.png 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3-400x135.png 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3.png 1200w\"><noscript><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"346\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3-1024x346.png\" alt=\"image 3\" class=\"wp-image-9573\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3-1024x346.png 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3-300x101.png 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3-768x259.png 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3-400x135.png 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3.png 1200w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"l\"><\/noscript><\/picture><\/figure>\n<h2><span class=\"ez-toc-section\" id=\"Default_P2P_Camera_feed_activated_and_sent_to_a_server_in_plaintext\"><\/span>Default P2P Camera feed activated and sent to a server in plaintext<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>The cloud function of the camera uses the P2P protocol to send and make requests back to a server based in China in plaintext. It was found that all connections back to this were made in plaintext regardless of protocol, this includes the viewing of the camera\u2019s stream and control. HTTPS was not found to be implemented anywhere on the camera.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Access_to_files_stored_on_the_camera\"><\/span>Access to files stored on the camera<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>The following directories can be viewed using the default login:<\/p>\n<ul>\n<li>http:\/\/+IP+\/tmpfs<\/li>\n<li>http:\/\/+IP+\/js<\/li>\n<li>http:\/\/+IP+\/lib<\/li>\n<li>http:\/\/+IP+\/log<\/li>\n<li>http:\/\/+IP+\/resources<\/li>\n<li>http:\/\/+IP+\/sd<\/li>\n<li>http:\/\/+IP+\/swfs<\/li>\n<\/ul>\n<figure class=\"wp-block-image size-large\"><picture><source sizes=\"(max-width: 1024px) 100vw, 1024px\" type=\"image\/webp\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-4-1024x352.png.webp 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-4-300x103.png.webp 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-4-768x264.png.webp 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-4-400x138.png.webp 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-4.png.webp 1200w\"><img loading=\"lazy\" width=\"1024\" height=\"352\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-4-1024x352.png\" alt=\"image 4\" class=\"wp-image-9574 lazyload\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"p\" decoding=\"async\" data-sizes=\"auto\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-4-1024x352.png 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-4-300x103.png 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-4-768x264.png 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-4-400x138.png 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-4.png 1200w\"><noscript><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"352\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-4-1024x352.png\" alt=\"image 4\" class=\"wp-image-9574\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-4-1024x352.png 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-4-300x103.png 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-4-768x264.png 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-4-400x138.png 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-4.png 1200w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"l\"><\/noscript><\/picture><\/figure>\n<p>The number of links discovered showed that the SD card, log files and website front-end code were accessible from the web interface. This includes any footage that has been recorded by the device and stored on the external SD card.<\/p>\n<p>I decided to check out <a href=\"https:\/\/www.shodan.io\/\" target=\"_blank\" rel=\"noreferrer noopener follow external\" data-wpel-link=\"external\">shodan.io<\/a>&nbsp;and searched for \u201chipcam realserver\u201d. Shodan is a Google like database of Connected Devices, if you like. It produced 93,312 results of addresses that had port 554 exposed to the internet. As I browsed these I also discovered a number of addresses that also had Port 80 exposed, hosting the same \u2018IP Camera\u2019 front page with login. With what I have discovered it is possible for each of these devices to be accessed via default credentials, or if the admin credentials are changed, Using VLC player, I could potentially connect to each of these camera streams without the need to authenticate.<\/p>\n<figure class=\"wp-block-image size-large\"><picture><source sizes=\"(max-width: 1024px) 100vw, 1024px\" type=\"image\/webp\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-8-1024x384.png.webp 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-8-300x113.png.webp 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-8-768x288.png.webp 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-8-400x150.png.webp 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-8.png.webp 1215w\"><img loading=\"lazy\" width=\"1024\" height=\"384\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-8-1024x384.png\" alt=\"image 8\" class=\"wp-image-9578 lazyload\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"p\" decoding=\"async\" data-sizes=\"auto\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-8-1024x384.png 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-8-300x113.png 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-8-768x288.png 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-8-400x150.png 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-8.png 1215w\"><noscript><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"384\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-8-1024x384.png\" alt=\"image 8\" class=\"wp-image-9578\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-8-1024x384.png 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-8-300x113.png 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-8-768x288.png 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-8-400x150.png 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-8.png 1215w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"l\"><\/noscript><\/picture><\/figure>\n<h2><span class=\"ez-toc-section\" id=\"Admin_Panel_-_Basic_Authentication_in_use\"><\/span>Admin Panel \u2013 Basic Authentication in use<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>When the camera is booted up, a web server is spawned and requires a login to gain access. Default credentials were then used to gain access and there was no setup to force change of the default password in place. Burpsuite caught this login process; the session was found to be using HTTP Basic Authentication to handle the username and password. The Base64 translates to admin:admin.<\/p>\n<figure class=\"wp-block-image size-full\"><picture><source type=\"image\/webp\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-12.png.webp\"><img loading=\"lazy\" width=\"283\" height=\"278\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-12.png\" alt=\"image 12\" class=\"wp-image-9608 lazyload\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"p\" decoding=\"async\"><noscript><img loading=\"lazy\" decoding=\"async\" width=\"283\" height=\"278\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-12.png\" alt=\"image 12\" class=\"wp-image-9608\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"l\"><\/noscript><\/picture><\/figure>\n<h2><span class=\"ez-toc-section\" id=\"JavaScript_injection_DOM-based\"><\/span>JavaScript injection (DOM-based)<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Data is read from <strong>document.cookie<\/strong> and passed to <strong>eval()<\/strong><\/p>\n<pre class=\"wp-block-code\"><code>\nvar strCookie=document.cookie;\nvar arrCookie=strCookie.split('; ');\nvar arr=arrCookie[i].split('=');\nreturn unescape(arr[1]);\nvar cooktype=getcookie('cookmun');\nvar string = eval(\"'cgi-bin\/hi3510\/param.cgi?cmd=setimageattr&amp;-image_type=\"+cooktype+\"&amp;-default=on'\");<\/code><\/pre>\n<p>Using various different methods of escaping. Stored XSS was also prevalent in many places within the admin panel that used user input. Example: FTP Upload settings.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"HTTP_Response_Header_InjectionSplitting\"><\/span>HTTP Response Header Injection\/Splitting<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>The web application is also evidently vulnerable to HTTP response header injection, see PoC below. This also led me to discover i was able to break out of the response.<\/p>\n<p>Your options for exploitation vary depending on the type of response you\u2019re injected into and also where in the response you\u2019re placed!<\/p>\n<figure class=\"wp-block-image size-large\"><picture><source sizes=\"(max-width: 1024px) 100vw, 1024px\" type=\"image\/webp\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5-1024x365.png.webp 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5-300x107.png.webp 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5-768x274.png.webp 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5-1536x548.png.webp 1536w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5-400x143.png.webp 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5.png.webp 1651w\"><img loading=\"lazy\" width=\"1024\" height=\"365\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5-1024x365.png\" alt=\"ieGeek vulnerabilities\" class=\"wp-image-9575 lazyload\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"p\" decoding=\"async\" data-sizes=\"auto\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5-1024x365.png 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5-300x107.png 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5-768x274.png 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5-1536x548.png 1536w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5-400x143.png 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5.png 1651w\"><noscript><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"365\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5-1024x365.png\" alt=\"ieGeek vulnerabilities\" class=\"wp-image-9575\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5-1024x365.png 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5-300x107.png 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5-768x274.png 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5-1536x548.png 1536w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5-400x143.png 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-5.png 1651w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"l\"><\/noscript><\/picture><\/figure>\n<p>Here we\u2019ve added a \u201cmalicious cookie\u201d which will be set in the browser. As mentioned earlier i was also able to break into the body, or out of the headers through double CRLFs (%0d%0a%0d%0a) <strong><em>see below<\/em><\/strong>.<\/p>\n<figure class=\"wp-block-image size-large\"><picture><source sizes=\"(max-width: 1024px) 100vw, 1024px\" type=\"image\/webp\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-7-1024x441.png.webp 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-7-300x129.png.webp 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-7-768x331.png.webp 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-7-400x172.png.webp 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-7.png.webp 1433w\"><img loading=\"lazy\" width=\"1024\" height=\"441\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-7-1024x441.png\" alt=\"image 7\" class=\"wp-image-9577 lazyload\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"p\" decoding=\"async\" data-sizes=\"auto\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-7-1024x441.png 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-7-300x129.png 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-7-768x331.png 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-7-400x172.png 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-7.png 1433w\"><noscript><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"441\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-7-1024x441.png\" alt=\"image 7\" class=\"wp-image-9577\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-7-1024x441.png 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-7-300x129.png 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-7-768x331.png 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-7-400x172.png 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-7.png 1433w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"l\"><\/noscript><\/picture><\/figure>\n<p>When user input is insecurely inserted into the headers of server responses, HTTP Header Injection vulnerabilities are created. They are based on the theory that an attacker can make the server generate a response that contains carriage-return and line-feed characters (or, respectively, %0D and %0A in their URI encoded forms), within the server response header, and\/or that the attacker may be able to add specially created headers. Attacks like response splitting, session fixation, cross-site scripting, and malicious redirection are all possible using header injection.<\/p>\n<p>Often, the injection of headers is not the main attack; rather, it is merely a method for accessing or exploiting another flaw. For instance, if a hacker is able to inject a payload through HTTP header injection, they may target a website that is susceptible to cross-site scripting in the Referer header or in a cookie value etc.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Device_NMAP_scan\"><\/span>Device NMAP scan<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<pre class=\"wp-block-code\"><code>Starting Nmap 7.80 ( https:\/\/nmap.org ) at 2022-08-28 00:42 BST\nNmap scan report for 192.168.1.116\nHost is up (0.0088s latency).\nNot shown: 996 closed ports\nPORT STATE SERVICE\n80\/tcp open http Hipcam RealServer\/V1.0\n554\/tcp open rtsp\n1935\/tcp open rtmp Real-Time Messaging Protocol\n8080\/tcp open http-proxy ONVIFservice\nMAC X (Shenzhentong BO Weitechnology) SHENZHEN\u2002TONG BO WEI\u2002TECHNOLOGY Co.,LTD\nDevice type: general purpose\nRunning: Linux 2.6.X|3.X\nOS CPE: cpe:\/o:linux:linux_kernel:2.6 cpe:\/o:linux:linux_kernel:3\nOS details: Linux 2.6.32 - 3.10\nNetwork Distance: 1 hop <\/code><\/pre>\n<p>Anyway, I decided enough is enough with this trash device and unplugged it from my network, packaged it back up and arranged a return with Amazon. <\/p>\n<h2><span class=\"ez-toc-section\" id=\"The_Listing_On_Amazon\"><\/span>The Listing On Amazon<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<figure class=\"wp-block-image size-large is-resized\"><picture><source type=\"image\/webp\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-9-1024x201.png.webp\"><img loading=\"lazy\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-9-1024x201.png\" alt=\"image 9\" class=\"wp-image-9591 lazyload\" width=\"610\" height=\"118\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"p\" decoding=\"async\"><noscript><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-9-1024x201.png\" alt=\"image 9\" class=\"wp-image-9591\" width=\"610\" height=\"118\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"l\"><\/noscript><\/picture><\/figure>\n<figure class=\"wp-block-image size-large\"><picture><source sizes=\"(max-width: 1024px) 100vw, 1024px\" type=\"image\/webp\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-10-1024x498.jpg.webp 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-10-300x146.jpg.webp 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-10-768x374.jpg.webp 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-10-400x195.jpg.webp 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-10.jpg.webp 1200w\"><img loading=\"lazy\" width=\"1024\" height=\"498\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-10-1024x498.jpg\" alt=\"image 10\" class=\"wp-image-9592 lazyload\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"p\" decoding=\"async\" data-sizes=\"auto\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-10-1024x498.jpg 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-10-300x146.jpg 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-10-768x374.jpg 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-10-400x195.jpg 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-10.jpg 1200w\"><noscript><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"498\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-10-1024x498.jpg\" alt=\"image 10\" class=\"wp-image-9592\" srcset=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-10-1024x498.jpg 1024w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-10-300x146.jpg 300w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-10-768x374.jpg 768w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-10-400x195.jpg 400w, https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-10.jpg 1200w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"l\"><\/noscript><\/picture><\/figure>\n<p>At the time of writing, the listing is still available, however, I reached out to Amazon and made them fully aware of everything, including my intention to publish this article, and they advised me that the product listing would be \u201ctemporarily\u201d removed today, <strong>28th Aug 2022<\/strong>, pending further Investigation. <br \/>The listing can be seen <a href=\"https:\/\/www.amazon.co.uk\/gp\/product\/B08MW5BSBJ\/\" target=\"_blank\" rel=\"noreferrer noopener follow external\" data-wpel-link=\"external\">here<\/a> <strong><em>[if still available]<\/em><\/strong><\/p>\n<p>It has to be worth noting, that there was an investigation by Which.co.uk see reference <a href=\"https:\/\/www.which.co.uk\/news\/article\/iegeek-security-camera-removed-from-sale-following-which-investigation-ajW4t0g7bnGj\" target=\"_blank\" rel=\"noreferrer noopener follow external\" data-wpel-link=\"external\">[3]<\/a> in July 2021, that details a line of similar flaws, consequently, Amazon removed the said ieGeek branded camera from sale on its website. The which? investigation revealed another device from the same manufacturer can be easily hacked by cybercriminals. <\/p>\n<blockquote class=\"wp-block-quote\">\n<p>The \u00a340 camera, which was labelled Amazon\u2019s Choice, had more than 8,500 reviews (as of June 22 2021), including 68% giving the full five stars.<\/p>\n<p>If you own the ieGeek Security Outdoor Camera 1080p, you should change its default password immediately, or better still, stop using it.<\/p>\n<p><cite>https:\/\/www.which.co.uk\/news\/article\/iegeek-security-camera-removed-from-sale-following-which-investigation-ajW4t0g7bnGj<\/cite><\/p><\/blockquote>\n<p>So the question remains, why do Amazon allow Manufacturers to list products irrelevant of the manufacturer having been Flagged, and Delisted in the past? A better system needs to be in place. Yes, I understand there can be a new line of products\/models but surely amazon should be seen to be doing more to prevent devices like this from appearing on their website. The privacy and security of their customers should be paramount.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Consumer_Recommendations\"><\/span>Consumer Recommendations<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>If you value your privacy, and security as much as we do, please remove the device from service. It is simply unfit for purpose. If you bought it from Amazon, go and arrange a return as this device is in clear breach of their merchant conditions.<\/p>\n<p>Research each device thoroughly before buying, and check it\u2019s security reputation.<\/p>\n<p><strong><em>Be Aware:<\/em> <\/strong><em>Endless numbers of IP cameras of other Brands also use the Hipcam RealServer service; I am unable to check the configuration of these devices specifically, but one would be led to&nbsp;believe they are all implemented similarly. Sadly, there doesn\u2019t seem to be a method to warn anyone utilising these IP Cameras that they are exposed.<\/em><\/p>\n<h2><span class=\"ez-toc-section\" id=\"Q_A\"><\/span>Q&amp;A<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<h3><span class=\"ez-toc-section\" id=\"Are_ieGeek_cameras_secure\"><\/span>Are ieGeek cameras secure?<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>According to our research, and many others, ieGeek cameras are not secure. The devices they seem to be pushing out in 2022 are vulnerable in a number of ways as detailed in this article. Fundamentally, they lack proper encryption, and, are shipped to consumers riddled with security holes. One can only ask themselves, is it intentional?<\/p>\n<h3><span class=\"ez-toc-section\" id=\"What_are_the_real_risks_of_ieGeek_cameras\"><\/span>What are the real risks of ieGeek cameras?<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>By using these devices that lack proper safety and security standards, your private data is at serious risk of being exposed, <strong>a bad actor may able to gain complete control of the cameras<\/strong>. This fundamentally opens up your entire network to further attack, making it much easier for a bad actor to reach an end goal.<\/p>\n<p>Cheap CCTV cameras tend to be vulnerable to at least one of the following types of hacking:<\/p>\n<ol>\n<li>They have a weak default password and username setting, which can be easily discoverable. If the user doesn\u2019t change those settings, it\u2019s very easy for hackers to find their way into your camera control system, in every case, there is no prompt in the Admin panel when logging in, advising you to chase any password.<\/li>\n<li>They don\u2019t encrypt your data so that your home router password input is un-encrypted and accessible to any cyber attacker, or themselves.., same applies with any SMTP email info provided, along with any FTP info provided to the device. By using the home router password, they can gain access to other devices on your home network, can monitor your Internet history and any stored data on connected devices.<\/li>\n<li>They let external users gain root access to the device itself, allowing hackers to take control, launch attacks from your device, and exfiltrate data.<\/li>\n<\/ol>\n<h2><span class=\"ez-toc-section\" id=\"Cheap_CCTV_Invites_Outside_Threats_Into_Your_Home4\"><\/span>Cheap CCTV Invites Outside Threats Into Your Home[4]<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>There are three main security issues you need to look for when buying your CCTV camera. Popular wireless security camera brands that are sold on online marketplaces like Amazon, but also eBay share common security flaws.<\/p>\n<p>As a rule of thumb, brands that are not well-known outside of the online market should be avoided at all cost. Affordable CCTV solutions from Shenzhen-based factories in China sometimes fail to meet wireless safety standards.<\/p>\n<p>Tested by a professional security lab, Context Information Security, \u201ccheap CCTV cameras show that they fail to prioritise customers\u2019 security even those that are bestsellers in online marketplaces\u201d<\/p>\n<p>Brands that have been tested for vulnerability and that you should avoid are the following; ieGeek, Sricam, SV3C, and Vstarcam. All come with a friendly price tag, but they are quick to join the list of the hacked CCTV cameras that put your privacy and security at risk.<\/p>\n<hr class=\"wp-block-separator has-alpha-channel-opacity\">\n<p>Coming up next, I will be covering a Chinese \u201cMini-PC\u201d that was shipped to me loaded with Malware.<\/p>\n<p>Ciao, for now.<\/p>\n<p>Updated 30\/08\/2022 \u2013 added more context and references.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"References\"><\/span><em>References<\/em><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><a href=\"https:\/\/www.amazon.co.uk\/gp\/product\/B08MW5BSBJ\/\" target=\"_blank\" rel=\"noreferrer noopener follow external\" data-wpel-link=\"external\">Amazon product listing<\/a>[1]<\/p>\n<p><a href=\"https:\/\/www.iegeek.com\/en-gb\/products\/security-camera-ig20\" target=\"_blank\" rel=\"noreferrer noopener follow external\" data-wpel-link=\"external\">IG20 ieGeek store page<\/a>[2]<\/p>\n<p><a href=\"https:\/\/www.which.co.uk\/news\/article\/iegeek-security-camera-removed-from-sale-following-which-investigation-ajW4t0g7bnGj\" target=\"_blank\" rel=\"noreferrer noopener follow external\" data-wpel-link=\"external\">Which investigation ieGeek<\/a>[3]<\/p>\n<p><a href=\"https:\/\/lockritesecurity.co.uk\/blog\/cheap-cctv-known-vulnerabilities\/\" target=\"_blank\" rel=\"noreferrer noopener follow external\" data-wpel-link=\"external\">Cheap CCTV Sold With Known Vulnerabilities<\/a>[4]<\/p>\n<hr class=\"wp-block-separator has-alpha-channel-opacity\">\n<p><a href=\"https:\/\/www.realinfosec.net\/support\/index.php?a=add&amp;category=3\" data-wpel-link=\"internal\" rel=\"noopener noreferrer\">Suggest an edit to this article<\/a><\/p>\n<p><a href=\"https:\/\/www.realinfosec.net\/support\/knowledgebase.php\" data-wpel-link=\"internal\" rel=\"noopener noreferrer\">Go to Cybersecurity Knowledge Base<\/a><\/p>\n<p><a href=\"https:\/\/www.realinfosec.net\/latest-cybersecurity-news\/\" data-wpel-link=\"internal\" rel=\"noopener noreferrer\">Got to the Latest Cybersecurity News<\/a><\/p>\n<p><a href=\"https:\/\/www.realinfosec.net\/cybersecurity-academy\/\" data-wpel-link=\"internal\" rel=\"noopener noreferrer\">Go to Cybersecurity Academy<\/a><\/p>\n<p><a href=\"https:\/\/www.realinfosec.net\/\" data-wpel-link=\"internal\" rel=\"noopener noreferrer\">Go to Homepage<\/a><\/p>\n<p><em>Stay informed of the latest Cybersecurity trends, threats and developments. Sign up for our <a href=\"https:\/\/www.realinfosec.net\/cybersecurity-newsletter\/\" data-wpel-link=\"internal\" rel=\"noopener noreferrer\">Weekly Cybersecurity Newsletter<\/a> Today<\/em>.<\/p>\n<p><strong><em>Remember, <\/em><\/strong><em>CyberSecurity Starts With You!<\/em><\/p>\n<ul>\n<li>Globally,&nbsp;<strong>30,000 websites<\/strong>&nbsp;are hacked daily.<\/li>\n<li><strong>64% of companies<\/strong>&nbsp;worldwide have experienced at least one form of a cyber attack.<\/li>\n<li>There were&nbsp;<strong>20M breached records<\/strong>&nbsp;in March 2021.<\/li>\n<li>In 2020, ransomware cases grew by&nbsp;<strong>150%<\/strong>.<\/li>\n<li>Email is responsible for around&nbsp;<strong>94% of all malware<\/strong>.<\/li>\n<li><strong>Every 39 seconds,<\/strong>&nbsp;there is a new attack somewhere on the web.<\/li>\n<li>An average of&nbsp;<strong>around 24,000 malicious mobile apps<\/strong>&nbsp;are blocked daily on the internet.<\/li>\n<\/ul>\n<p class=\"pvc_stats all \" data-element-id=\"9572\"><i class=\"pvc-stats-icon medium\" aria-hidden=\"true\"><svg version=\"1.0\" viewBox=\"0 0 502 315\" preserveAspectRatio=\"xMidYMid meet\"><g transform=\"translate(0,332) scale(0.1,-0.1)\" fill stroke=\"none\"><path d=\"M2394 3279 l-29 -30 -3 -207 c-2 -182 0 -211 15 -242 39 -76 157 -76 196 0 15 31 17 60 15 243 l-3 209 -33 29 c-26 23 -41 29 -80 29 -41 0 -53 -5 -78 -31z\" \/><path d=\"M3085 3251 c-45 -19 -58 -50 -96 -229 -47 -217 -49 -260 -13 -295 52 -53 146 -42 177 20 16 31 87 366 87 410 0 70 -86 122 -155 94z\" \/><path d=\"M1751 3234 c-13 -9 -29 -31 -37 -50 -12 -29 -10 -49 21 -204 19 -94 39 -189 45 -210 14 -50 54 -80 110 -80 34 0 48 6 76 34 21 21 34 44 34 59 0 14 -18 113 -40 219 -37 178 -43 195 -70 221 -36 32 -101 37 -139 11z\" \/><path d=\"M1163 3073 c-36 -7 -73 -59 -73 -102 0 -56 133 -378 171 -413 34 -32 83 -37 129 -13 70 36 67 87 -16 290 -86 209 -89 214 -129 231 -35 14 -42 15 -82 7z\" \/><path d=\"M3689 3066 c-15 -9 -33 -30 -42 -48 -48 -103 -147 -355 -147 -375 0 -98 131 -148 192 -74 13 15 57 108 97 206 80 196 84 226 37 273 -30 30 -99 39 -137 18z\" \/><path d=\"M583 2784 c-38 -19 -67 -74 -58 -113 9 -42 211 -354 242 -373 16 -10 45 -18 66 -18 51 0 107 52 107 100 0 39 -1 41 -124 234 -80 126 -108 162 -133 173 -41 17 -61 16 -100 -3z\" \/><path d=\"M4250 2784 c-14 -9 -74 -91 -133 -183 -95 -150 -107 -173 -107 -213 0 -55 33 -94 87 -104 67 -13 90 8 211 198 130 202 137 225 78 284 -27 27 -42 34 -72 34 -22 0 -50 -8 -64 -16z\" \/><path d=\"M2275 2693 c-553 -48 -1095 -270 -1585 -649 -135 -104 -459 -423 -483 -476 -23 -49 -22 -139 2 -186 73 -142 361 -457 571 -626 285 -228 642 -407 990 -497 242 -63 336 -73 660 -74 310 0 370 5 595 52 535 111 1045 392 1455 803 122 121 250 273 275 326 19 41 19 137 0 174 -41 79 -309 363 -465 492 -447 370 -946 591 -1479 653 -113 14 -422 18 -536 8z m395 -428 c171 -34 330 -124 456 -258 112 -119 167 -219 211 -378 27 -96 24 -300 -5 -401 -72 -255 -236 -447 -474 -557 -132 -62 -201 -76 -368 -76 -167 0 -236 14 -368 76 -213 98 -373 271 -451 485 -162 444 86 934 547 1084 153 49 292 57 452 25z m909 -232 c222 -123 408 -262 593 -441 76 -74 138 -139 138 -144 0 -16 -233 -242 -330 -319 -155 -123 -309 -223 -461 -299 l-81 -41 32 46 c18 26 49 83 70 128 143 306 141 649 -6 957 -25 52 -61 116 -79 142 l-34 47 45 -20 c26 -10 76 -36 113 -56z m-2057 25 c-40 -58 -105 -190 -130 -263 -110 -324 -59 -707 132 -981 25 -35 42 -64 37 -64 -19 0 -241 119 -326 174 -188 122 -406 314 -532 468 l-58 71 108 103 c185 178 428 349 672 473 66 33 121 60 123 61 2 0 -10 -19 -26 -42z\" \/><path d=\"M2375 1950 c-198 -44 -350 -190 -395 -379 -18 -76 -8 -221 19 -290 114 -284 457 -406 731 -260 98 52 188 154 231 260 27 69 37 214 19 290 -38 163 -166 304 -326 360 -67 23 -215 33 -279 19z\" \/><\/g><\/svg><\/i> &nbsp;7,594&nbsp;total views, &nbsp;3,656&nbsp;views today<\/p>\n<div data-object_id=\"9572\" class=\"cbxwpbkmarkwrap cbxwpbkmarkwrap_guest cbxwpbkmarkwrap_user_cat cbxwpbkmarkwrap-post \"><a data-redirect-url=\"https:\/\/www.realinfosec.net\/cybersecurity-news\/iegeek-vulnerabilities-still-prevalent-in-2022-amazon-ft-ig20\/\" data-display-label=\"1\" data-show-count=\"0\" data-bookmark-label=\"Bookmark\" data-bookmarked-label=\"Bookmarked\" data-loggedin=\"0\" data-type=\"post\" data-object_id=\"9572\" class=\"cbxwpbkmarktrig cbxwpbkmarktrig-button-addto\" title=\"Bookmark This\" href=\"https:\/\/www.realinfosec.net\/cybersecurity-news\/iegeek-vulnerabilities-still-prevalent-in-2022-amazon-ft-ig20\/#\"><span class=\"cbxwpbkmarktrig-label\">Bookmark<\/span><\/a> <\/p>\n<div data-type=\"post\" data-object_id=\"9572\" class=\"cbxwpbkmarkguestwrap\" id=\"cbxwpbkmarkguestwrap-9572\">\n<div class=\"cbxwpbkmarkguest-message\">\n<h3 class=\"cbxwpbookmark-title cbxwpbookmark-title-login\"><span class=\"ez-toc-section\" id=\"Please_login_to_bookmark\"><\/span>Please login to bookmark<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p class=\"cbxwpbookmark-guest-register\">No account yet? <a href=\"https:\/\/www.realinfosec.net\/register\/?redirect_to=https%3A%2F%2Fwww.realinfosec.net%2Fcybersecurity-news%2Fiegeek-vulnerabilities-still-prevalent-in-2022-amazon-ft-ig20%2F\" data-wpel-link=\"internal\" rel=\"noopener noreferrer\">Register<\/a><\/p>\n<\/div>\n<\/div>\n<\/div>\n<div class=\"abh_box abh_box_down abh_box_drop-down\">\n<div class=\"abh_tab_content\">\n<section class=\"vcard author abh_about_tab abh_tab\" itemscope itemprop=\"author\" itemtype=\"http:\/\/schema.org\/Person\">\n<div class=\"abh_image\" itemscope itemtype=\"http:\/\/schema.org\/ImageObject\"><a href=\"https:\/\/www.twitter.com\/n0tst3\" class=\"url\" target=\"_blank\" title=\"RiSec.n0tst3\" rel=\"noopener follow external\" data-wpel-link=\"external\"> <img loading=\"lazy\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/gravatar\/photo-1544502062-f82887f03d1c.jpg\" class=\"photo lazyload\" width=\"250\" alt=\"RiSec.n0tst3\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" decoding=\"async\" height=\"151\"><noscript><img decoding=\"async\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/gravatar\/photo-1544502062-f82887f03d1c.jpg\" class=\"photo\" width=\"250\" alt=\"RiSec.n0tst3\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"l\"><\/noscript><\/a> <\/div>\n<div class=\"abh_text\">\n<div class=\"description note abh_description\" itemprop=\"description\">Hello! I&#8217;m Steve, an independent security researcher, and analyst from Scotland, UK.<\/p>\n<p>I&#8217;ve had an avid interest in Computers, Technology and Security since my early teens. 20 years on, and, it&#8217;s a whole lot more complicated&#8230;<\/p>\n<p>I&#8217;ve assisted Governments, Individuals and Organizations throughout the world. Including; US DOJ, NHS UK, GOV UK.<\/p>\n<p>I&#8217;ll often reblog infosec-related articles that I find interesting. On the RiSec website, You&#8217;ll also find a variety of write-ups, tutorials and much more!<\/p>\n<\/div>\n<\/div>\n<\/section>\n<section class=\"abh_posts_tab abh_tab\">\n<div class=\"abh_image\"><a href=\"https:\/\/www.twitter.com\/n0tst3\" class=\"url\" target=\"_blank\" title=\"RiSec.n0tst3\" rel=\"noopener follow external\" data-wpel-link=\"external\"><img loading=\"lazy\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/gravatar\/photo-1544502062-f82887f03d1c.jpg\" class=\"photo lazyload\" width=\"250\" alt=\"RiSec.n0tst3\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" decoding=\"async\" height=\"151\"><noscript><img decoding=\"async\" src=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/gravatar\/photo-1544502062-f82887f03d1c.jpg\" class=\"photo\" width=\"250\" alt=\"RiSec.n0tst3\" title=\"ieGeek Vulnerabilities still prevalent in 2022 - Amazon Ft. IG20\" data-eio=\"l\"><\/noscript><\/a><\/div>\n<div class=\"abh_text\">\n<div class=\"abh_name\">Latest posts by RiSec.n0tst3 <span class=\"abh_allposts\">(<a href=\"https:\/\/www.realinfosec.net\/members\/adminrealinfosec-net\/\" data-wpel-link=\"internal\" rel=\"noopener noreferrer\">see all<\/a>)<\/span><\/div>\n<\/div>\n<\/section>\n<\/div><\/div>\n<div class=\"heateor_sss_sharing_container heateor_sss_horizontal_sharing\" data-heateor-sss-href=\"https:\/\/www.realinfosec.net\/cybersecurity-news\/iegeek-vulnerabilities-still-prevalent-in-2022-amazon-ft-ig20\/\">\n<div class=\"heateor_sss_sharing_title\">Share the word, let&#8217;s increase Cybersecurity Awareness as we know it<\/div>\n<\/div>\n<div class=\"code-block code-block-4\"> <ins class=\"adsbygoogle\" data-ad-format=\"autorelaxed\" data-ad-client=\"ca-pub-1155797322372148\" data-ad-slot=\"9948143567\"><\/ins>\n<\/div>\n<\/p><\/div>\n<nav class=\"navigation post-navigation\" aria-label=\"Continue Reading\">\n<h2 class=\"screen-reader-text\">Continue Reading<\/h2>\n<\/nav>\n<p>READ MORE <a href=\"https:\/\/packetstormsecurity.com\/news\/view\/33785\/ieGeek-Vulnerabilities-Still-Prevalent-In-2022.html\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":48223,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[60],"tags":[8968],"class_list":["post-48222","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-packet-storm","tag-headlineprivacyflawspyware"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>ieGeek Vulnerabilities Still Prevalent In 2022 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/iegeek-vulnerabilities-still-prevalent-in-2022\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"ieGeek Vulnerabilities Still Prevalent In 2022 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/iegeek-vulnerabilities-still-prevalent-in-2022\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2022-08-30T14:57:33+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3-1024x346.png\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"11 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iegeek-vulnerabilities-still-prevalent-in-2022\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iegeek-vulnerabilities-still-prevalent-in-2022\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"ieGeek Vulnerabilities Still Prevalent In 2022\",\"datePublished\":\"2022-08-30T14:57:33+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iegeek-vulnerabilities-still-prevalent-in-2022\\\/\"},\"wordCount\":2155,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iegeek-vulnerabilities-still-prevalent-in-2022\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/08\\\/iegeek-vulnerabilities-still-prevalent-in-2022.png\",\"keywords\":[\"headline,privacy,flaw,spyware\"],\"articleSection\":[\"Packet Storm\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iegeek-vulnerabilities-still-prevalent-in-2022\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iegeek-vulnerabilities-still-prevalent-in-2022\\\/\",\"name\":\"ieGeek Vulnerabilities Still Prevalent In 2022 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iegeek-vulnerabilities-still-prevalent-in-2022\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iegeek-vulnerabilities-still-prevalent-in-2022\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/08\\\/iegeek-vulnerabilities-still-prevalent-in-2022.png\",\"datePublished\":\"2022-08-30T14:57:33+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iegeek-vulnerabilities-still-prevalent-in-2022\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iegeek-vulnerabilities-still-prevalent-in-2022\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iegeek-vulnerabilities-still-prevalent-in-2022\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/08\\\/iegeek-vulnerabilities-still-prevalent-in-2022.png\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/08\\\/iegeek-vulnerabilities-still-prevalent-in-2022.png\",\"width\":1024,\"height\":346},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iegeek-vulnerabilities-still-prevalent-in-2022\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"headline,privacy,flaw,spyware\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/headlineprivacyflawspyware\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"ieGeek Vulnerabilities Still Prevalent In 2022\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"ieGeek Vulnerabilities Still Prevalent In 2022 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/iegeek-vulnerabilities-still-prevalent-in-2022\/","og_locale":"en_US","og_type":"article","og_title":"ieGeek Vulnerabilities Still Prevalent In 2022 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/iegeek-vulnerabilities-still-prevalent-in-2022\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2022-08-30T14:57:33+00:00","og_image":[{"url":"https:\/\/www.realinfosec.net\/wp-content\/uploads\/2022\/08\/image-3-1024x346.png","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"11 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/iegeek-vulnerabilities-still-prevalent-in-2022\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/iegeek-vulnerabilities-still-prevalent-in-2022\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"ieGeek Vulnerabilities Still Prevalent In 2022","datePublished":"2022-08-30T14:57:33+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/iegeek-vulnerabilities-still-prevalent-in-2022\/"},"wordCount":2155,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/iegeek-vulnerabilities-still-prevalent-in-2022\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2022\/08\/iegeek-vulnerabilities-still-prevalent-in-2022.png","keywords":["headline,privacy,flaw,spyware"],"articleSection":["Packet Storm"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/iegeek-vulnerabilities-still-prevalent-in-2022\/","url":"https:\/\/www.threatshub.org\/blog\/iegeek-vulnerabilities-still-prevalent-in-2022\/","name":"ieGeek Vulnerabilities Still Prevalent In 2022 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/iegeek-vulnerabilities-still-prevalent-in-2022\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/iegeek-vulnerabilities-still-prevalent-in-2022\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2022\/08\/iegeek-vulnerabilities-still-prevalent-in-2022.png","datePublished":"2022-08-30T14:57:33+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/iegeek-vulnerabilities-still-prevalent-in-2022\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/iegeek-vulnerabilities-still-prevalent-in-2022\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/iegeek-vulnerabilities-still-prevalent-in-2022\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2022\/08\/iegeek-vulnerabilities-still-prevalent-in-2022.png","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2022\/08\/iegeek-vulnerabilities-still-prevalent-in-2022.png","width":1024,"height":346},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/iegeek-vulnerabilities-still-prevalent-in-2022\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"headline,privacy,flaw,spyware","item":"https:\/\/www.threatshub.org\/blog\/tag\/headlineprivacyflawspyware\/"},{"@type":"ListItem","position":3,"name":"ieGeek Vulnerabilities Still Prevalent In 2022"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/48222","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=48222"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/48222\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/48223"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=48222"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=48222"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=48222"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}