This vulnerability is going to be seen in most of the cloud CCTV storage systems out there. It is just not possible to have that many passwords and access to the cloud storage to not have someone gaining access, once in putting ways to get deeper into the system is always going to be possible. HIK has it's flaws and many are probably done by the Manufacturer, but cloud storage vulnerability has always been there, and if you want to access and be accessed to your phone each time an event happens on your CCTV account, just know others will soon have access as well. Now if you CCTV only show areas that are public, I am not sure of the damage, but remember if they are in, they can delete, change access and set up info as well. Be warned.
from CTI Consulting http://ift.tt/2gHtVgC