The International Imaging Industry Association has devised a
'standardised protocol' known as Picture
Transfer Protocol (PTP) to move digital
pictures from camera to PC seeing as Modern Cameras which connect with a PC by
means of USB or WiFi systems are said to have been vulnerable against
ransomware and malware attacks.
A research report from Check Point Research ascribes the
danger to Picture Transfer Protocol (PTP) used to transfer digital pictures
from camera to PC.
For their research, Check Point utilized Canon's EOS 80D
DSLR camera which supports both USB and WiFi, and basic vulnerabilities in the
PTP were found. Given that the protocol is standardized and installed in other
camera brands, it is reasonable for expect that comparable vulnerabilities can
be found in cameras from different sellers too.
The transfer protocol was at first centered around picture
transfer, but it evolved further to incorporate many various commands that
support anything from taking a live picture to overhauling the camera's
firmware.
Eyal Itkin, Security Researcher, Check Point Software
Technologies says that, “Any ‘smart’ device, including the DSLR camera, is
susceptible to attacks; cameras are no longer just connected to the USB, but to
the WiFi network and its surrounding environment. This makes them more
vulnerable to threats as attackers can inject ransomware into both the camera
and PC it is connected to. The photos could end up being held hostage until the
user pays the ransom for them to be released.”
Here are some important measures the camera owners can take
in order to avoid being infected:
- Ensure your camera is utilizing the most recent firmware version, and install a patch if available.
- Turn off the camera's WiFi when not being used
- When utilizing Wi-Fi, take a stab at utilizing the camera as the Wi-Fi___33 access point (basically, design the camera to go about as a Wi-Fi hotspot), instead of connecting your camera to an open Wi-Fi network.
