This was discovered by Avishai Efrat, a white hat hacktivist at Wizcase. These webcams include those belonging to various manufacturers including AXIS net cameras, Cisco Linksys webcam, and Mobotix among others.
These web cameras can be accessed by anyone in any part of the world, with just an internet connection. The settings and user privileges were found to be accessible in many of them.
How did this happen?
“Web cameras manufacturers strive to use technologies which make the device installation as seamless as possible but this sometimes results in open ports with no authentication mechanism set up,” says the Wizcase blog.
It was observed that many devices weren’t secured by firewalls or VPNs, and no additional security measures were taken after installation.
It is essential that the webcams must be changed from default to more secure settings by the user. Wizcam also urges manufacturers to ensure stronger settings in the webcams they sell.
If in the wrong hands, access to such data is dangerous. The potential impacts are something to be aware of.