Canon has issued a global security advisory warning pertaining to its DSLR, Mirror-less and compact cameras. The problem is related to Canon’s digital cameras which feature the Picture Transfer Protocol (PTP) communication system.
The security issue discovered by Check Point software technologies is of serious concern. They advise that they were able to Break into the camera’s file system on the SD card. While connected over WiFi they were able to remotely execute Ransomware and encrypt the photo’s stored on it.
Canon has issues some basic precautionary steps:
- Ensure the suitability of security-related settings of the devices connected to the camera. Such as the PC, mobile device, and router being used.
- Do not connect the camera to a PC or mobile device that is being used in an unsecure network. i.e a free Wi-Fi environment.
- Do not connect the camera to a PC or mobile device that is potentially exposed to virus infections.
- Disable the camera’s network functions when they are not being used.
- Download the official firmware from Canon’s website when performing a camera firmware update.
Thankfully, Check Point has notified Canon of the vulnerability, and the two companies are working together to resolve he issue. According to Canon:
Due to these vulnerabilities, the potential exists for third-party attack on the camera if the camera is connected to a PC or mobile device that has been hijacked through an unsecured network.
Feel free to contact TechBug for assistance installing the latest firmware if your Camera if affected.