Sign up for our daily briefing

Make your busy days simpler with Axios AM/PM. Catch up on what's new and why it matters in just 5 minutes.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Stay on top of the latest market trends

Subscribe to Axios Markets for the latest market trends and economic insights. Sign up for free.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Sports news worthy of your time

Binge on the stats and stories that drive the sports world with Axios Sports. Sign up for free.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Tech news worthy of your time

Get our smart take on technology from the Valley and D.C. with Axios Login. Sign up for free.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Get the inside stories

Get an insider's guide to the new White House with Axios Sneak Peek. Sign up for free.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top Denver news?

Get a daily digest of the most important stories affecting your hometown with Axios Denver

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top Des Moines news?

Get a daily digest of the most important stories affecting your hometown with Axios Des Moines

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top Twin Cities news?

Get a daily digest of the most important stories affecting your hometown with Axios Twin Cities

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top Tampa Bay news?

Get a daily digest of the most important stories affecting your hometown with Axios Tampa Bay

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top Charlotte news?

Get a daily digest of the most important stories affecting your hometown with Axios Charlotte

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Photo: Omar Marques/SOPA Images/LightRocket via getty

Researchers at Tenable announced Monday a security flaw in the firmware of network video recorders made by NUUO that could allow hackers to delete or modify surveillance videos or turn off surveillance entirely. It is not yet patched, although Tenable claims a patch might be available tomorrow.

Why it matters: NUUO makes hardware that records and manages security camera footage. The company's product integrates with more than 100 different camera brands.

The technical details: The vulnerability, which Tenable has dubbed "Peekaboo," is a firmware-level problem allowing for remote code execution.

  • The bug is what's known as a buffer overflow, where an attacker sends more data than a computer is designed to receive, leading the computer to inadvertantly store the leftover data as commands the computer will later run.
  • The company posted a blog with more information and a tool to determine whether systems are vulnerable.

Why announce before a patch is available? There is always a concern when researchers announce vulnerabilities before a patch is available that hackers might use that information to take advantage of unpatched systems.

  • Researchers often give a deadline for a company to show progress in developing a patch before announcing a vulnerability to the public to incentivize manufacturers taking vulnerability reports seriously.
  • In this case, Tenable alerted the media after giving NUUO 105 days to announce a release date for a patch (Tenable gives a deadline of 90 days). NUUO only announced the patch early Monday, after the media had already been notified.
  • "We believe that, thanks to our disclosure the vendor released the patch," Renaud Deraison, co-founder and chief technology officer at Tenable, told Axios.

Go deeper

Scoop: Biden briefing calls for 20,000 child migrant beds

President Biden, during a virtual meeting with Mexican President Andrés Manuel López Obrador. Photo: Anna Moneymaker-Pool/Getty Images

A briefing scheduled for President Biden this afternoon outlines the need for 20,000 beds to shelter an expected crush of child migrants crossing the U.S.-Mexico border, Axios has learned.

Why it matters: The rapid influx of unaccompanied children is building into the administration's first new crisis. A presentation created by the Domestic Policy Council spells out the dimensions with nearly 40 slides full of charts and details.

FBI director: Jan. 6 Capitol attack was domestic terrorism

The FBI views the Jan. 6 Capitol siege as an act of domestic terrorism, director Christopher Wray testified in his opening statement Tuesday before the Senate Judiciary Committee.

Why it matters: The FBI's designation of the attack as domestic terrorism puts the perpetrators "on the same level with ISIS and homegrown violent extremists," Wray said.

Sen. Martin Heinrich to introduce plan for Puerto Rico statehood

U.S. Sen. Martin Heinrich (D-N.M.) at a hearing on Feb. 23, 2021 in Washington, D.C. PHOTO: Jim Watson-Pool/Getty Images

U.S. Sen. Martin Heinrich (D-N.M.) and Rep. Darren Soto (D-Fla.) announced Tuesday they would introduce legislation to start the motions for Puerto Rico statehood.

Why it matters: More than 52% of Puerto Ricans voted last November in favor of statehood, three years after Hurricane Maria struck the island and caused one of the worst natural disasters in recorded history. It exposed the island's vulnerable position as a U.S. territory and its lack of resources to battle poverty.