Skip to content
July 13, 2026
  • Linkedin
  • Twitter
  • Facebook
  • Youtube

Daily CyberSecurity

Zero-hour alerts. Unmatched analysis.

Primary Menu
  • Home
  • CVE Data
    • CVE Watchtower
    • Top Exploited CVEs
    • CVE Stats by Vendor
    • Q2 2026 Report
  • Cyber Criminals
  • Data Leak
  • Linux
  • Malware
  • Vulnerability
  • Submit Press Release
  • Vulnerability Report
Light/Dark Button
  • Home
  • News
  • Cyber Security
  • Hacker group Anonymous controls over 400 Russian cameras
  • Cyber Security

Hacker group Anonymous controls over 400 Russian cameras

Do Son March 11, 2022 2 minutes read
Anonymous Russian cameras
Add Daily CyberSecurity as a preferred source on Google

Anonymous and other hacker groups supporting Ukraine took over 400+ Russian cameras. At the same time, the real-time information of the control camera was shared on the behindenemylines.live website, and the working environment and content of many sensitive Russian agencies were broadcast live, which brought serious harm.

As the Russian-Ukrainian conflict escalates, attackers are targeting important IoT devices, especially cameras. On March 1, Anonymous claimed control of the surveillance system, including hundreds of camera devices, on Twitter, along with some clear camera screenshots.

We are #Anonymous

We have taken control of more Russian cameras near the Ukrainian border in support of #Ukraine #OpUkraine #OpRussia pic.twitter.com/rpJzIAk4iI

— AnonymousLT (@Anonymous_LTU) March 1, 2022

"A mistake made twice is a lesson not learnt." – Anonymous

Anonymous hit the Belarusian surveillance system. More than 240 cameras are now sabotaged.#Ukraine #oprussia #Anonymous #UkraineWar #Belarus #UkraineRussiaWar pic.twitter.com/zMyItfrzF4

— AnonymousLT (@Anonymous_LTU) March 1, 2022

At the same time, Anonymous claimed to use weak passwords to log into the camera system and change the password to force the camera administrator to go offline.

https://twitter.com/YounesAnonymous/status/1498735814435557377

The intrusion of cameras in normal times will affect corporate and personal privacy. During the national confrontation, attackers can monitor high-value clues such as military and material mobilization by controlling cameras. In the process of attacking camera assets, camera devices exposed to the Internet are often the first target of attackers. At the same time, attackers can conduct supply chain attacks on cameras belonging to the same manufacturer, destroy upstream servers. In order to avoid similar supply chain security incidents, countries should sort out and dispose of camera equipment exposed on the Internet in advance.

The loss of a camera asset can trigger a supply chain security incident. At present, cameras have become an indispensable monitoring device for organizations and families. The data of these devices are mostly private data, and the consequences of being invaded or illegally used are unimaginable. Attackers can use camera manufacturers to conduct supply chain attacks on cameras belonging to the same manufacturer. If the manufacturer’s cameras are widely used around the world, supply chain security incidents will occur.

It is recommended that important enterprises in various countries use spatial mapping technology to sort out their camera assets exposed on the Internet, try to avoid exposure to the Internet, and reduce the risk of being attacked. At the same time, the regulatory authorities of various countries conduct periodic sorting, risk assessment, and guidance disposal of assets within their jurisdiction to avoid direct exposure of camera assets to the public network.

Get Zero-Hour Vulnerability Alerts

Critical CVEs, CVSS scores, and PoC updates — straight to your inbox every week.


We respect your inbox. Unsubscribe anytime.

Related coverage

  • CVE-2024-38094 Exploited: Attackers Gain Domain Access via Microsoft SharePoint Server
  • Beware of Instagram Influencer Scams: McAfee Labs Exposes New Threat
  • Google TAG Uncovers Watering Hole Attacks on Mongolian Government Websites
  • Nasir Security’s Hybrid Warfare Against Middle East Energy Infrastructure
  • Hackers attacked US water facility via CVE-2023-6448 vulnerability
Track all actively exploited CVEs →

Support Our Threat Intelligence

If you find our CVE report and cybersecurity news helpful, consider supporting our work.

Buy Me a Coffee Logo Buy Me a Coffee PayPal
Crypto QR Code
USDT (TRC20):
TN8BdV8cp4T1Cd28gK9qTAnZknzzuwyUtm
USDT (ERC20):
0x3725e1a7d3bc5765499fa6aaafe307fabcd75bce

Share this article:

Facebook Post LinkedIn Telegram
Written by
@DdoS · Security Researcher

Do Son

Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.

Tags: anonymous Russian cameras

Search

Translation

CVE WATCHTOWER
🚨

Receive alerts for vulnerabilities being exploited in the wild.

⚡

Get notified instantly when a Proof of Concept (PoC) exploit is published.

🔍

Access critical info on vulnerabilities even when marked as "RESERVED".

🧠

Insights powered by decades of expertise and global intelligence sources.

🎯

Customize alerts with up to 10 keywords for your specific tech stack.

📊

Export the raw CVE database for SIEM integration and reporting.

Upgrade Package

🚨 Active Exploits in the Wild

  • CVE-2026-1207CVSS 5.4
    An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28. Raster lookups on...
    Admin intel📅 Updated: Jul 10, 2026
  • CVE-2026-48939CVSS 10.0
    A vulnerability in the iCagenda extension for Joomla allows the upload of arbitrary files in the file attachment...
    CISA KEV📅 Added to KEV: Jul 10, 2026
  • CVE-2026-56291CVSS 10.0
    The Joomla extension Balbooa Forms is vulnerable to an unauthenticated arbitrary file upload that allows uploading executable files...
    CISA KEV📅 Added to KEV: Jul 10, 2026
  • CVE-2026-55255CVSS 8.4
    Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.1, an Insecure Direct...
    CISA KEV📅 Added to KEV: Jul 7, 2026
  • CVE-2026-48908
    A vulnerability in SP Page Builder for Joomla allows unauthenticated users to upload arbitrary files, ultimately resulting in...
    CISA KEV📅 Added to KEV: Jul 7, 2026
  • CVE-2026-56290
    The Joomla extension Page Builder CK is vulnerable to an unauthenticated arbitrary file upload that allows uploading executable...
    CISA KEV📅 Added to KEV: Jul 7, 2026
  • CVE-2026-20896CVSS 9.8
    Gitea Docker image: `REVERSE_PROXY_TRUSTED_PROXIES = *` default lets any source IP impersonate any user via `X-WEBAUTH-USER`
    Admin intel📅 Updated: Jul 6, 2026
  • CVE-2026-48282CVSS 10.0
    ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Restricted...
    Admin intelCISA KEV📅 Added to KEV: Jul 7, 2026📅 Updated: Jul 3, 2026
Powered by CVE Watchtower

🔴 Live Critical Threats

  • CVE-2026-14453CVSS 9.6
    This vulnerability is a critical Server-Side Template Injection (SSTI) in Centreon's centreon-open-tickets...
  • CVE-2026-59518CVSS 9.8
    Deserialization of Untrusted Data vulnerability in wpWax Directorist directorist allows Object Injection.This...
  • CVE-2026-59515CVSS 9.3
    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
  • CVE-2026-57813CVSS 9.8
    Incorrect Privilege Assignment vulnerability in properfraction MailOptin mailoptin allows Privilege Escalation.This issue...
  • CVE-2026-57811CVSS 10.0
    Improper Control of Generation of Code ('Code Injection') vulnerability in Realtyna Realtyna...
  • CVE-2026-57770CVSS 9.8
    Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Photography grandphotography allows Object...
  • CVE-2026-57744CVSS 9.8
    Deserialization of Untrusted Data vulnerability in stmcan RT-Theme 18 | Extensions rt18-extensions...
  • CVE-2026-57739CVSS 9.3
    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
  • CVE-2026-57738CVSS 9.8
    Deserialization of Untrusted Data vulnerability in axiomthemes 777 triple-seven allows Object Injection.This...
  • CVE-2026-57726CVSS 9.3
    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Powered by CVE WATCHTOWER

Our Websites
  • Penetration Testing Tools
  • The Daily Information Technology
  • Top Exploited CVEs
  • Daily CyberSecurity

    • About SecurityOnline.info
    • Advertise with us
    • Announcement
    • Contact
    • Contributor Register
    • Login
    • Disclaimer
    • DCMA
    • Privacy Policy
    • About SecurityOnline.info
    • Advertise on SecurityOnline.info
    • Contact Us

    When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works

    • CVE Watchtower
    • CVE Statistics by Vendor 2026
    • Q2 2026 Report
    • Top Exploited CVEs
    • Linkedin
    • Twitter
    • Facebook
    • Youtube
    © 2017 - 2026 Daily CyberSecurity. All Rights Reserved.