Websites such as Insecam and Shodan let anyone search the internet for insecure cameras the way you can use Google to search for recipes. For example, you can go to Insecam and even browse webcams from all over the world based on rating. Look for cameras in your neighborhood and hope you’re not one of them.
It shouldn’t be so easy to peer into a stranger’s bedroom, much less hundreds of strangers’ bedrooms. But a website has collected the streaming footage from over 73,000 IP cameras. Is this about highlighting an important security problem, or profiting off creepy voyeurism—or both?
Today, we’ll be looking at IP cameras and how easy it to brute force an IP camera that is exposed to the internet.
We have an IP camera setup and protected by CUJO. Then we disable the CUJO protection on the camera and proceed to try to access it. The camera, like many Internet of Things devices, is insecure and exposes information that helps us hack into it.
Cameras like this exist in millions of homes. You probably have a camera on the device that you are reading this article with. Once a hacker gets into the camera they can watch, they can infect it and use it for a DDoS attack, or they can use it as a stepping stone to get further into your network and your sensitive data.
What are hackers after? Your finances, your data, and your privacy. Hackers are for-profit criminals scanning the internet for vulnerable devices.
Watch the video below to see how easy it is to hack an internet connected camera and how CUJO would block an attack.
What can you do?
- Cover up the cameras you aren’t using, such as webcams and the cameras on your laptop.
- Only buy Internet-connected devices from companies that have a proven record on security.
- Get a CUJO. CUJO will detect and monitor all devices on your network and block hacks.