|Traded as||SZSE: 002236|
|Industry||Video surveillance Solutions|
|Products||Security Cameras, Network Cameras, HDCVI analog-to-HD Solutions, NVR/DVR, PTZ Cameras, Fisheye Cameras|
|Revenue||$3.73 billion (2019)|
Number of employees
Dahua Technology has around 16,000 employees all over the world. Dahua solutions, products, and services are used in 180 countries and regions. It has 53 subsidiaries globally covering Asia, the Americas, Europe, Middle East, Oceania, Africa, etc.
Dahua Technology is majority owned and controlled by Fu Liquan and his wife Chen Ailing. As of 31 December 2019[update], Fu owned 35.97% shares as the largest shareholder, while Chen owned 2.37%.
Dahua Technology is also partially state-owned by Central Huijin Asset Management and China Securities Finance Co., Ltd. at 1.05% and 1.32 respectively. Central Huijin Investment is a state-owned enterprise and wholly owned subsidiary of China Investment Corporation, a sovereign wealth fund that reports to the State Council of the People's Republic of China.
In September 2016, the largest DDoS attack to date, on KrebsOnSecurity.com, was traced back to a botnet. According to internet provider Level 3 Communications, the most commonly infected devices in this botnet were Dahua and Dahua OEM cameras and DVRs. Nearly one million Dahua devices were infected with the BASHLITE malware. A vulnerability in most of Dahua's cameras allowed "anyone to take full control of the devices' underlying Linux operating system just by typing a random username with too many characters." This was exploited, and malware installed on devices that allowed them to be used in "both DDoS attacks as well as for extortion campaigns using ransomware."
In March 2017 a backdoor into many Dahua cameras and DVRs was discovered by security researchers working for a Fortune 500 company. The vulnerability had been activated on cameras within the Fortune 500 company's network, and the data trafficked to China through the company's firewall. Using a web browser, the vulnerability allowed unauthorised people to remotely download a device's database of usernames and passwords and subsequently gain access to it. Dahua issued a firmware update to fix the vulnerability in 11 of its products. Security researchers discovered that the updated firmware contained the same vulnerability but that the vulnerability had been relocated to a different part of the code. This was characterized by the security researchers as deliberate deception.
Dahua has played a role in the mass surveillance of Uyghurs in Xinjiang. In October 2019, the U.S. government placed Dahua on the Bureau of Industry and Security's Entity List for its role in surveillance of Uyghurs in Xinjiang and of other ethnic and religious minorities in China. In November 2020, after security researchers identified facial identification software code with designations by ethnicity, Dahua removed the code in question from GitHub.
- "Revenue". Reuters. 2014-07-28. Archived from the original on 2015-09-24. Retrieved 2017-06-30.
- Flannery, Russell (October 26, 2016). "Chinese Entrepreneur Who Sold His Home To Start A Business Adds To Billionaire Fortune". Forbes. Archived from the original on October 27, 2016. Retrieved 2020-05-24.
- "Introduction - Dahua Technology". de.dahuasecurity.com. Archived from the original on 2018-02-24. Retrieved 2018-02-25.
- "Dahua, GKUVISION, SLR Magic LTD, & DZO" (PDF). olympus-global.com. February 22, 2018.[dead link]
- 大华股份：遭实控人减持7375万股. caixin (in Chinese). 12 May 2017. Archived from the original on 12 May 2017. Retrieved 24 May 2020.
- "2019 Annual Report". Shenzhen Stock Exchange. April 2020. pp. 105–108. Archived from the original on May 24, 2020. Retrieved May 24, 2020.
- Xiangming, Hou; Spring, Jake (2015-09-06). "Central Huijin Investment to issue 30 bln yuan bond on Friday". Reuters. Retrieved 2020-05-24.
- Ren, Daniel (March 3, 2017). "State-backed institutions outshine stock-focused mutual peers". South China Morning Post. Archived from the original on April 4, 2017. Retrieved May 24, 2020.
- Ying, Moxy (November 17, 2018). "When Stocks Crash, China Turns to Its 'National Team'". Bloomberg News. Archived from the original on August 9, 2019. Retrieved May 24, 2020.
- Franceschi-Bicchierai, Lorenzo (29 September 2016). "How 1.5 Million Connected Cameras Were Hijacked to Make an Unprecedented Botnet". Vice. Archived from the original on 3 June 2019. Retrieved 2019-06-03.
- Goodin, Dan. "Brace yourselves—source code powering potent IoT DDoSes just went public". ARS Technica. ARS Technica. Archived from the original on 3 October 2016. Retrieved 2 October 2016.
- "Attack of Things!". Level 3 Blog. Level 3 Communications. Archived from the original on 3 October 2016. Retrieved 3 October 2016.
- "BASHLITE malware turning millions of Linux Based IoT Devices into DDoS botnet". HackRead. 2016-09-02. Archived from the original on 3 October 2016. Retrieved 3 October 2016.
- "BASHLITE Botnets Ensnare 1 Million IoT Devices". www.securityweek.com. Archived from the original on 2019-06-03. Retrieved 2019-06-03.
- ipvideomarket (6 March 2017). "Dahua Backdoor Uncovered". IPVM. Archived from the original on 3 June 2019. Retrieved 2019-06-03.
- J. FREEDBERG JR., SYDNEY. "Hacker Heaven: Huawei's Hidden Back Doors Found". breakingdefense.com. Breaking Defense. Archived from the original on 7 July 2019. Retrieved 7 July 2019.
- "Dahua backdoor". Krebs on Security. Archived from the original on 2019-06-03. Retrieved 2019-06-03.
- at 02:58, Richard Chirgwin 8 Mar 2017. "Dahua video kit left user credentials in plain sight". The Register. Archived from the original on 3 June 2019. Retrieved 2019-06-03.
- "Dahua security camera owners urged to update firmware after vulnerability found". The State of Security. 8 March 2017. Archived from the original on 3 June 2019. Retrieved 2019-06-03.
- Jennifer Chang, I-wei (2019-12-04). "Taiwan's "Warm Power": Sharing Lessons on Digital Governance". globaltaiwan.org. Global Taiwan Institute. Archived from the original on 14 December 2019. Retrieved 14 December 2019.
- "Amazon buys heat-sensing cameras from blacklisted Chinese firm". The Guardian. Reuters. 2020-04-29. ISSN 0261-3077. Archived from the original on 2020-05-02. Retrieved 2020-05-03.
- Shepardson, David (2019-10-07). "U.S. puts Hikvision, Chinese security bureaus on economic blacklist". Reuters. Archived from the original on 2019-10-07. Retrieved 2019-10-07.
- Swanson, Ana; Mozur, Paul (2019-10-07). "U.S. Blacklists 28 Chinese Entities Over Abuses in Xinjiang". The New York Times. ISSN 0362-4331. Archived from the original on 2020-04-15. Retrieved 2020-05-24.
- Borak, Masha (November 5, 2020). "Chinese surveillance giant expanding in the US attracts scrutiny over possible targeting of Uygurs". South China Morning Post. Retrieved November 6, 2020.