Updates on AVTECH ELF_IMEIJ Malware Infection

Updates 2017 March 24 

It appear that major ISP from Singapore had taken steps to block the spread of the malware ELF_IMEIJ on AVTECH CCTV System through their network as of 24 March 2017 by blocking certain ways the malware spread.

However, there’s no easy way to determine if your system is infected with the Malware as not all infected system will exhibit any symptoms.  Your CCTV System may appear to be functioning normally but the attacker will have full control of your system and will be able to monitor data in your network. It may allow them to copy files from file servers, hacked or infect other devices/computer in your network as well.  (Read more)

Only way is to reload the firmware to the AVTECH DVR/NVR. For those without upgraded firmware, there’s no guarantee that reloading the firmware will prevent re-infection as any infected devices connected will lead to reinfection.

As Lakson no longer have any customers with AVTECH equipment under warranty/maintenance/subscriptions, support for AVTECH system will ceased as there’s no easy method to detect or prevent reinfection for devices without upgraded firmware.

Our recommended is to immediately upgrade those models with firmware updates from AVTECH immediately and replace those without any firmware updates immediately.