Honeywell Security Solutions
View in browser
Cybersecurity Vulnerability Notification and Recommendation
We have recently identified a potential cyber security vulnerability affecting several Honeywell-branded video products when used in an open network environment.

The potential vulnerability may allow experienced hackers to hijack and decrypt the transmissions between the IP cameras and embedded recorders, enabling them to access the device and in the case of NVR’s to take it over.

Honeywell takes cyber security very seriously and employs a rigorous process to help identify and resolve potential vulnerabilities in any existing products. We have taken the following immediate actions to address the described vulnerability:
  • We have identified all potentially impacted devices. Please see the link to a list of affected products below for the respective model numbers.
  • We have developed firmware updates that address the potential vulnerability and are in the process of testing them. All firmware updates will be available to customers as per the dates listed on the table below.
  • While the affected devices remain fully functional, end-users are encouraged to work with you to deploy the firmware upgrade and address any other cyber security concerns. We strongly recommend that you  upgrade the firmware on any of your customers’ devices and in particular on the NVR’s which are potentially at higher risk. Please see Honeywell’s MyWebTech website for specific model number instructions and firmware downloads.
Thank you in advance for your continued support and for your patience while we work to resolve this situation. In the meantime, please direct all questions to 1-800-323-4576 option 2, option 4, option 1.

Click here to view a list of affected products.

Sincerely,
Honeywell Commercial Security
Technical Support Team
 
.