CRN looks at the 10 hottest startups of 2019 that are providing new ways to secure IoT devices and deploy applications at the edge, among other things. ReFirm Labs is the leader in firmware security analysis.
November 11, 2019 — Podcast: Made in America? Trade Tensions Highlight Supply Chain Risk
In this episode of the The Security Ledger podcast (#167): two stories this week – one from Pittsburgh and one from New York – have highlighted anxiety about Chinese made cameras and other security gear deployed in U.S. government agencies and in cities and towns. We’re joined by Terry Dunlap the co-founder of ReFirm Labs to talk about why software supply chain risks are real -and growing.
November 8, 2019 — Video: Surveillance Cameras Being Used in Pittsburgh Made by Chinese Company Banned by U.S.
ABC News investigative report, with co-founder Terry Dunlap, reveals national security issues facing the City of Pittsburgh’s decision to install Chinese-made surveillance cameras.
October 19, 2019 — WSJ: U.S. Government Still Uses Suspect Chinese Cameras
“ReFirm Labs, a Maryland-based cybersecurity company, found in 2017 that some Dahua cameras could allow intruders access to the video feeds. Dahua released updated firmware to address the issue, although ReFirm cofounder Terry Dunlap said a different backdoor appeared in the new firmware version.”
August 27, 2019 — Unsecured IoT: 8 Ways Hackers Exploit Firmware Vulnerabilities
Co-founder Terry Dunlap discusses why it’s important to be aware of the eight most common firmware vulnerabilities to make sure you haven’t left the front door open to your network.
August 18, 2019 — Surveillance Cameras in Parts of Pennsylvania use Hackable Chinese Tech and Can Recognize Faces
“The particular placement of this back door did not strike us at all as being accidental. It looked like it was purposefully obfuscated by whoever put it there,” said Terry Dunlap, co-founder of ReFirm Labs and a former National Security Agency analyst.
July 31, 2019 — Cisco to Pay $8.6 Million to Settle Government Claims of Flawed Tech
Cisco and other surveillance camera manufacturers came under increasing scrutiny in 2013 for the security practices of technology linked through the internet. During a presentation at the Black Hat security conference that year, ReFirm Labs own Craig Heffner, demonstrated how to hack into surveillance cameras made by Cisco and others.
July 10, 2019 — Banned Chinese Security Cameras Are Almost Impossible to Remove
Bloomberg reports on the impossible task facing the US Government of removing banned security cameras . ReFirm Labs research points out that Dahua cameras contain an unauthenticated remote backdoor within its firmware. This allows US adversaries to tap into them and send information to China.
July 6, 2019 — China’s Global Espionage Project: Huawei Firmware Backdoors Discovered
Hundreds of common “backdoors” hidden in Chinese-made surveillance products discovered. ReFirm Labs’ Centrifuge Platform helped expose intentional Dahua backdoors in its firmware.
July 5, 2019 — Hacker Heaven: Huawei’s Hidden Back Doors Found
ReFirm Labs talks about intentional backdoors in Chinese-manufactured security cameras and IoT devices. Dahua in particular is called out.