DIGIEVER Corp.
Company Details
Linkedin ID:
digiever-corp-
Website:
Employees number:
27
Number of followers:
287
NAICS:
5112
Industry Type:
Homepage:
digiever.com
IP Addresses:
0
Company ID:
DIG_7015180
Scan Status:
In-progress
DIGIEVER Corp. Company CyberSecurity Posture
digiever.com
Company Overview DIGIEVER is a leading company dedicated to providing high quality and outstanding performance of IP video surveillance solutions. DIGIEVER takes DIGIEVER NVR, Linux-embedded network video recorder, as the core and develops relative video surveillance product lines, including central management software DIGIEVER CMS, DIGIEVER Video Wall Decoder, external storage expansion box DIGIARRAY and DIGIMobileV2 to satisfy increasing video surveillance requirements in the world. DIGIEVER’s comprehensive NVR products have been successfully distributed through worldwide channel partners that cross five continentals. Formed with a group of experts who have rich experience in research and development in networking products, DIGIEVER, focuses on providing leading-edge surveillance solutions not only in software applications, also in hardware design and devoting to optimize users' experience. DIGIEVER is one of the members in Intel Brand Advantage Program and Intel IoT (Internet of Things) Alliance. DIGIEVER also has profound relationship with various global partners all over the world such as AXIS, ImmerVision, Seagate and Western Digital. Vision The products that DIGIEVER introduced are guaranteed to be high quality and outstanding performance to meet client’s demand. Our innovative network video recorder and solutions are well-reputed for its solid hardware design and ease of use software interface. In addition, the comprehensive integration and partnership with numerous network hardware brands increases flexibility and conveys value to our clients and channel partners. With a goal to develop reliable products and services and a mission to drive the IP-based surveillance systems, DIGIEVER is proud to be a supplier in IP video surveillance industry that enable our partners and clients to optimize their approach to business and life.
DIGIEVER Corp. A.I CyberSecurity Scoring
DIGIEVER Corp. Risk Score (AI oriented)Between 700 and 749
DIGIEVER Corp.
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
DIGIEVER Corp. Global Score (TPRM)XXXX
DIGIEVER Corp.
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
DIGIEVER Corp. Company CyberSecurity News & History
Past Incidents
2
Attack Types
2
DigiEver
Cyber Attack
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: A new variant of the Mirai botnet has been identified as targeting DigiEver DS-2105 Pro DVRs, exploiting a vulnerability that allows attackers to commandeer the devices. The botnet, known as 'Hail Cock Botnet', has been active since September 2024, compromised devices in the wild, particularly IoT devices, and incorporated improved encryption with ChaCha20 and XOR decryption algorithms. This campaign involved exploiting unpatched RCE vulnerabilities, with the outdated DigiEver DS-2105 Pro DVR being ten years old and therefore likely lacking updates from the manufacturer. It signifies a lack of security measures for retired or aging hardware, resulting in the botnet's ability to proliferate and potentially bring about further malicious activity.
DigiEver
Vulnerability
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: DigiEver, a manufacturer of DVRs, became the target of a new Mirai botnet variant which exploits a remote code execution vulnerability in their DS-2105 Pro DVRs. Akamai researchers found that this vulnerability allowed botnet operators to inject malicious code and maintain persistence on infected IoT devices. As a result, the compromised DVRs are used for further spreading the malware and brute-forcing operations. The targeted devices are about a decade old, often without the support of their manufacturers, leaving them without security updates. The incident underscores the risks associated with outdated firmware and hardware in IoT devices, which can be co-opted into botnets for large-scale cyber attacks.
DIGIEVER Corp. Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for DIGIEVER Corp.
Incidents vs Software Development Industry Average (This Year)
No incidents recorded for DIGIEVER Corp. in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for DIGIEVER Corp. in 2025.
Incident Types DIGIEVER Corp. vs Software Development Industry Avg (This Year)
No incidents recorded for DIGIEVER Corp. in 2025.
Incident History — DIGIEVER Corp. (X = Date, Y = Severity)
DIGIEVER Corp. cyber incidents detection timeline including parent company and subsidiaries
DIGIEVER Corp. Company Subsidiaries
Company Overview DIGIEVER is a leading company dedicated to providing high quality and outstanding performance of IP video surveillance solutions. DIGIEVER takes DIGIEVER NVR, Linux-embedded network video recorder, as the core and develops relative video surveillance product lines, including central management software DIGIEVER CMS, DIGIEVER Video Wall Decoder, external storage expansion box DIGIARRAY and DIGIMobileV2 to satisfy increasing video surveillance requirements in the world. DIGIEVER’s comprehensive NVR products have been successfully distributed through worldwide channel partners that cross five continentals. Formed with a group of experts who have rich experience in research and development in networking products, DIGIEVER, focuses on providing leading-edge surveillance solutions not only in software applications, also in hardware design and devoting to optimize users' experience. DIGIEVER is one of the members in Intel Brand Advantage Program and Intel IoT (Internet of Things) Alliance. DIGIEVER also has profound relationship with various global partners all over the world such as AXIS, ImmerVision, Seagate and Western Digital. Vision The products that DIGIEVER introduced are guaranteed to be high quality and outstanding performance to meet client’s demand. Our innovative network video recorder and solutions are well-reputed for its solid hardware design and ease of use software interface. In addition, the comprehensive integration and partnership with numerous network hardware brands increases flexibility and conveys value to our clients and channel partners. With a goal to develop reliable products and services and a mission to drive the IP-based surveillance systems, DIGIEVER is proud to be a supplier in IP video surveillance industry that enable our partners and clients to optimize their approach to business and life.
Loading...
DIGIEVER Corp. Similar Companies
Atlassian powers the collaboration that helps teams accomplish what would otherwise be impossible alone. From space missions and motor racing to bugs in code and IT requests, no task is too large or too small with the right team, the right tools, and the right practices. Over 300,000 global compa
Snowflake
**Snowflake is proud to be the Official Data Collaboration Provider for LA28 and Team USA.** Snowflake delivers the AI Data Cloud — a global network where thousands of organizations mobilize data with near-unlimited scale, concurrency, and performance. Inside the AI Data Cloud, organizations unite
Thomson Reuters
Thomson Reuters is the world’s leading provider of news and information-based tools to professionals. Our worldwide network of journalists and specialist editors keep customers up to speed on global developments, with a particular focus on legal, regulatory and tax changes. Our customers operat
Starting our journey in 2011, today, bigbasket - a Tata Enterprise is India’s largest online supermarket with over 13 million customers and a presence in 60+ cities & towns. With our presence spanning the entire spectrum of consumer needs, we operate through a range of business lines - bigbasket, bb
OpenText
OpenText is a leading Cloud and AI company that provides organizations around the world with a comprehensive suite of Business AI, Business Clouds, and Business Technology. We help organizations grow, innovate, become more efficient and effective, and do so in a trusted and secure way—through Inform
Shopify is a leading global commerce company, providing trusted tools to start, grow, market, and manage a retail business of any size. Shopify makes commerce better for everyone with a platform and services that are engineered for reliability, while delivering a better shopping experience for consu
SAP is the leading enterprise application and business AI company. We stand at the intersection of business and technology, where our innovations are designed to directly address real business challenges and produce real-world impacts. Our solutions are the backbone for the world’s most complex and
Just Eat Takeaway.com
Just Eat Takeaway.com is a leading global online delivery marketplace, connecting consumers and restaurants through our platform in 19 countries. Like a dinner table, working at JET brings our office employees and couriers together. From coding to customer service to couriers, JET is a
NetSuite
Founded in 1998, Oracle NetSuite is the world’s first cloud company. For more than 25 years, NetSuite has helped businesses gain the insight, control, and agility to build and grow a successful business. First focused on financials and ERP, we now provide an AI-powered unified business system that
.png)
DIGIEVER Corp. CyberSecurity News
December 04, 2025 04:26 PM
Cybereason co-founder's new venture 7AI raises $130M in largest cybersecurity Series A
Lior Div's cybersecurity startup 7AI raised $130M in the largest Series A in industry history, aiming to double or triple its Boston...
December 04, 2025 04:16 PM
South Carolina unveils plans to launch its own cybersecurity hub
South Carolina Gov. Henry McMaster and other officials announced Wednesday that the state will soon establish a cybersecurity hub.
December 04, 2025 04:04 PM
The Palo Alto Networks Story - ft. Nir Zuk & Nikesh Arora
Nir Zuk tells the story of how, frustrated by cybersecurity, he set out on his own with a an idea to transform the industry: the Next-Gen Firewall.
December 04, 2025 03:56 PM
Safe to eat, safe to operate: Why the food chain needs a cybersecurity rethink
Food safety depends not only on clean equipment, but secure networks, protected data, and resilient OT.
December 04, 2025 03:47 PM
Critical vulnerabilities found in React and Next.js
Security researchers on Wednesday warned about a critical vulnerability in React Server Components (RCS) and Next.js.
December 04, 2025 03:42 PM
Lawmakers question White House on strategy for countering AI-fueled hacks
The Trump administration has said little about how it will prevent hackers from abusing AI.
December 04, 2025 03:33 PM
Why Logistics is the New Prime Target for Cyberattacks
Recent ransomware attacks on Estes and Ward prove transportation is vulnerable. Discover why legacy systems and ELDs are creating hidden...
December 04, 2025 03:26 PM
News | The University of Alabama in Huntsville
The Distinguished Lecture Series (DLS) at The University of Alabama in Huntsville (UAH), a part of The University of Alabama System,...
December 04, 2025 03:20 PM
I’m a marathoner and a cybersecurity leader — Here’s what 26.2 miles have taught me about work
Endurance mindset connects the marathon course to cybersecurity.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
DIGIEVER Corp. CyberSecurity History Information
Official Website of DIGIEVER Corp.
The official website of DIGIEVER Corp. is http://www.digiever.com.
DIGIEVER Corp.’s AI-Generated Cybersecurity Score
According to Rankiteo, DIGIEVER Corp.’s AI-generated cybersecurity score is 738, reflecting their Moderate security posture.
How many security badges does DIGIEVER Corp.’ have ?
According to Rankiteo, DIGIEVER Corp. currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does DIGIEVER Corp. have SOC 2 Type 1 certification ?
According to Rankiteo, DIGIEVER Corp. is not certified under SOC 2 Type 1.
Does DIGIEVER Corp. have SOC 2 Type 2 certification ?
According to Rankiteo, DIGIEVER Corp. does not hold a SOC 2 Type 2 certification.
Does DIGIEVER Corp. comply with GDPR ?
According to Rankiteo, DIGIEVER Corp. is not listed as GDPR compliant.
Does DIGIEVER Corp. have PCI DSS certification ?
According to Rankiteo, DIGIEVER Corp. does not currently maintain PCI DSS compliance.
Does DIGIEVER Corp. comply with HIPAA ?
According to Rankiteo, DIGIEVER Corp. is not compliant with HIPAA regulations.
Does DIGIEVER Corp. have ISO 27001 certification ?
According to Rankiteo,DIGIEVER Corp. is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of DIGIEVER Corp.
DIGIEVER Corp. operates primarily in the Software Development industry.
Number of Employees at DIGIEVER Corp.
DIGIEVER Corp. employs approximately 27 people worldwide.
Subsidiaries Owned by DIGIEVER Corp.
DIGIEVER Corp. presently has no subsidiaries across any sectors.
DIGIEVER Corp.’s LinkedIn Followers
DIGIEVER Corp.’s official LinkedIn profile has approximately 287 followers.
NAICS Classification of DIGIEVER Corp.
DIGIEVER Corp. is classified under the NAICS code 5112, which corresponds to Software Publishers.
DIGIEVER Corp.’s Presence on Crunchbase
No, DIGIEVER Corp. does not have a profile on Crunchbase.
DIGIEVER Corp.’s Presence on LinkedIn
Yes, DIGIEVER Corp. maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/digiever-corp-.
Cybersecurity Incidents Involving DIGIEVER Corp.
As of December 04, 2025, Rankiteo reports that DIGIEVER Corp. has experienced 2 cybersecurity incidents.
Number of Peer and Competitor Companies
DIGIEVER Corp. has an estimated 27,194 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at DIGIEVER Corp. ?
Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability and Cyber Attack.
How does DIGIEVER Corp. detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an third party assistance with akamai..
Incident Details
Can you provide details on each incident ?
Title: Mirai Botnet Variant Targets DigiEver DVRs
Description: DigiEver, a manufacturer of DVRs, became the target of a new Mirai botnet variant which exploits a remote code execution vulnerability in their DS-2105 Pro DVRs. Akamai researchers found that this vulnerability allowed botnet operators to inject malicious code and maintain persistence on infected IoT devices. As a result, the compromised DVRs are used for further spreading the malware and brute-forcing operations. The targeted devices are about a decade old, often without the support of their manufacturers, leaving them without security updates. The incident underscores the risks associated with outdated firmware and hardware in IoT devices, which can be co-opted into botnets for large-scale cyber attacks.
Type: Botnet
Attack Vector: Remote Code Execution
Vulnerability Exploited: Remote Code Execution Vulnerability in DS-2105 Pro DVRs
Threat Actor: Mirai Botnet Operators
Motivation: Malware Spreading, Brute-forcing Operations
Title: Hail Cock Botnet Targeting DigiEver DS-2105 Pro DVRs
Description: A new variant of the Mirai botnet, known as 'Hail Cock Botnet', has been identified as targeting DigiEver DS-2105 Pro DVRs. This botnet exploits a vulnerability that allows attackers to commandeer the devices, incorporating improved encryption with ChaCha20 and XOR decryption algorithms. The campaign involves exploiting unpatched RCE vulnerabilities, with the outdated DigiEver DS-2105 Pro DVR being ten years old and therefore likely lacking updates from the manufacturer. This incident signifies a lack of security measures for retired or aging hardware, resulting in the botnet's ability to proliferate and potentially bring about further malicious activity.
Date Detected: September 2024
Type: Botnet
Attack Vector: RCE vulnerabilities
Vulnerability Exploited: Unpatched RCE vulnerabilities
Threat Actor: Hail Cock Botnet
Motivation: Commandeer devices
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Cyber Attack.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Remote Code Execution Vulnerability.
Impact of the Incidents
What was the impact of each incident ?
Incident : Botnet DIG000122724
Systems Affected: DS-2105 Pro DVRs
Incident : Botnet DIG000123124
Systems Affected: DigiEver DS-2105 Pro DVRs
Which entities were affected by each incident ?
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Botnet DIG000122724
Third Party Assistance: Akamai
How does the company involve third-party assistance in incident response ?
Third-Party Assistance: The company involves third-party assistance in incident response through Akamai.
Data Breach Information
What type of data was compromised in each breach ?
Incident : Botnet DIG000123124
Data Encryption: ChaCha20 and XOR decryption algorithms
Lessons Learned and Recommendations
What lessons were learned from each incident ?
Incident : Botnet DIG000122724
Lessons Learned: Risks associated with outdated firmware and hardware in IoT devices, which can be co-opted into botnets for large-scale cyber attacks.
Incident : Botnet DIG000123124
Lessons Learned: Lack of security measures for retired or aging hardware
What are the key lessons learned from past incidents ?
Key Lessons Learned: The key lessons learned from past incidents are Risks associated with outdated firmware and hardware in IoT devices, which can be co-opted into botnets for large-scale cyber attacks.Lack of security measures for retired or aging hardware.
References
Where can I find more information about each incident ?
Incident : Botnet DIG000122724
Source: Akamai Researchers
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Akamai Researchers.
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Botnet DIG000122724
Entry Point: Remote Code Execution Vulnerability
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Botnet DIG000122724
Root Causes: Outdated firmware and hardware in IoT devices
Incident : Botnet DIG000123124
Root Causes: Unpatched RCE vulnerabilities in outdated hardware
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Akamai.
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident were an Mirai Botnet Operators and Hail Cock Botnet.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on September 2024.
Impact of the Incidents
Response to the Incidents
What third-party assistance was involved in the most recent incident ?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was Akamai.
Lessons Learned and Recommendations
What was the most significant lesson learned from past incidents ?
Most Significant Lesson Learned: The most significant lesson learned from past incidents was Risks associated with outdated firmware and hardware in IoT devices, which can be co-opted into botnets for large-scale cyber attacks., Lack of security measures for retired or aging hardware.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Akamai Researchers.
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an Remote Code Execution Vulnerability.
Post-Incident Analysis
What was the most significant root cause identified in post-incident analysis ?
Most Significant Root Cause: The most significant root cause identified in post-incident analysis was Outdated firmware and hardware in IoT devices, Unpatched RCE vulnerabilities in outdated hardware.
.png)
Latest Global CVEs (Not Company-Specific)
Description
MCP Server Kubernetes is an MCP Server that can connect to a Kubernetes cluster and manage it. Prior to 2.9.8, there is a security issue exists in the exec_in_pod tool of the mcp-server-kubernetes MCP Server. The tool accepts user-provided commands in both array and string formats. When a string format is provided, it is passed directly to shell interpretation (sh -c) without input validation, allowing shell metacharacters to be interpreted. This vulnerability can be exploited through direct command injection or indirect prompt injection attacks, where AI agents may execute commands without explicit user intent. This vulnerability is fixed in 2.9.8.
Risk Information
cvss3
Base: 6.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H
Description
XML external entity (XXE) injection in eyoucms v1.7.1 allows remote attackers to cause a denial of service via crafted body of a POST request.
Description
An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to access administrative functions of the device (e.g. file upload, firmware update, reboot...) via a crafted authentication bypass.
Description
Cal.com is open-source scheduling software. Prior to 5.9.8, A flaw in the login credentials provider allows an attacker to bypass password verification when a TOTP code is provided, potentially gaining unauthorized access to user accounts. This issue exists due to problematic conditional logic in the authentication flow. This vulnerability is fixed in 5.9.8.
Risk Information
cvss4
Base: 9.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Rhino is an open-source implementation of JavaScript written entirely in Java. Prior to 1.8.1, 1.7.15.1, and 1.7.14.1, when an application passed an attacker controlled float poing number into the toFixed() function, it might lead to high CPU consumption and a potential Denial of Service. Small numbers go through this call stack: NativeNumber.numTo > DToA.JS_dtostr > DToA.JS_dtoa > DToA.pow5mult where pow5mult attempts to raise 5 to a ridiculous power. This vulnerability is fixed in 1.8.1, 1.7.15.1, and 1.7.14.1.
Risk Information
cvss4
Base: 5.5
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=digiever-corp-' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
