They knew about the flaws for 11 years.
And now, Cisco Systems is finally paying the price.
The company is paying an $8.6 million penalty for failing to identify security holes in the software they sold to the U.S. government.
Engadget covered the story of the employee who leaked the information:
Whistleblower James Glenn, a Danish employee of Cisco partner Net Design, warned Cisco management in 2008 that hackers could potentially use a flaw in the camera security system to get administrative access to other parts of the network.
Cisco failed to respond to his concerns so he reported them to the police, and then the FBI.
The government subsequently opened a case against Cisco in 2011, but documents from this time were only recently unsealed.