35 models of IP video cameras are considered unreliable
Security specialists are engaged not only in developing new systems, but also in finding "holes" in the protection of existing equipment. One of them, a professional with the nickname Slipstream, revealed the lack of modern protection in more than 35 models of network video cameras. According to him, the corresponding web server is not secure enough, so unauthorized remote connection and interception of camera control are possible. Using a GET request, it is possible to give the necessary commands to the equipment even before the user is asked for a password.
The specialist reported that he had found a program that helps hackers hack IP video cameras. They often do not pursue practical goals, simply wanting to prove to themselves and others that they are capable of this. Another option to bypass the protection is to artificially overflow the camera's memory buffer, after which its protection is disabled. Such "holes" are the result of insufficient study of possible situations. As a rule, a software developer is guided by some abstract standard conditions, without providing for the possibility of atypical behavior of a hacker.
One of the ways to protect your equipment is to regularly change passwords and carefully analyze the equipment that you are going to include in the system. Due to the detection of errors, patches are introduced into the software that complicate the process of third-party connection. Camera manufacturers closely monitor the publication of information about the weaknesses of their products on the Web.