You should check the security settings
Cameras. They seem to promise peace of mind. Yet a cascade of recent security incidents reveals a troubling truth: Many of these devices are less like tools to help us protect our premises and more like gaping holes in our digital defenses.
Just last month, cybersecurity researchers disclosed a now-patched critical security flaw in Dahua smart cameras, allowing attackers to hijack the devices and control them remotely. Earlier this year, a shocking 40,000 cameras were discovered streaming their feeds to the open internet, unprotected by even a basic password – revealing everything from office layouts to intimate domestic scenes.
California and Texas – the most exposed states in the US
Most of those unprotected cameras are in the USA, with California and Texas having the most exposed devices. Attackers need only the right IP address and browser to spy on homes and businesses. They can easily find IPs because IoT search engines constantly scan the internet and flag all the exposed services.
“These cameras – intended for security or convenience – have inadvertently become public windows into sensitive spaces, often without their owners’ knowledge,” reads the Bitsight report.
And then there’s the persistent cloud of doubt surrounding Amazon’s Ring cameras. In recent months, many users reported unauthorized logins. According to Amazon, it was just a “bug that incorrectly displays prior login dates,” but the company’s reassurances did little to quell users’ fears that their personal privacy is at risk.
Don’t leave “the door” unlocked
“It’s entirely understandable to be concerned, especially given the recent news. These devices, while offering convenience and protection, are essentially small computers connected to your network and the internet, making them potential targets. My advice to anyone worried about their privacy is to take a proactive approach,” says Karolis Arbaciauskas, head of business product at NordPass
“First, you should check if your cameras are accessible from the internet and set or change the default username and password. Many devices come with weak or publicly known default credentials. Manufacturers intentionally set simple passwords to make it easy for their owners to configure new devices. However, after doing so, you’re supposed to change the password and login information. The manual even often suggests doing so,” says Arbaciauskas.
Tips for securing cameras
To prevent hackers from spying on you through your own cameras, Arbaciauskas suggests reviewing your camera settings as well as your Wi-Fi settings. He offers some tips to help you stay safe:
- Change default passwords immediately: This is the absolute first and most critical step. Many of the issues we see stem from users not changing the factory-set default passwords (e.g., “admin/admin,” “user/12345”). These are often publicly known and the first options hackers will try. Use a strong, unique password for each device, ideally managed by a reputable password manager.
- Enable multi-factor authentication (2FA/MFA): If your camera or its associated app/service offers 2FA, or multi-factor authentication, enable it without hesitation. This adds a crucial layer of security, requiring a second verification (like a code from your phone) even if your password is compromised.
- Keep firmware updated: Think of your camera’s firmware as its operating system. Manufacturers regularly release updates to patch newly discovered security vulnerabilities. Treat these updates with the same importance you would your phone or computer’s updates. Check for and apply them regularly.
- Secure your home network: Your camera is only as secure as the Wi-Fi network it’s connected to. So:
- Ensure your router has a strong, unique password (not the default one).
- Make sure your Wi-Fi is using WPA2 or, even better, WPA3 encryption.
- Set up a separate guest Wi-Fi network for cameras and other IoT devices. Connecting your smart cameras and other IoT devices to a segregated network can prevent a compromised camera from allowing hackers access to your main home network (where your computers, phones, and sensitive data reside).
- Ensure your router’s firewall is enabled and configured correctly.
- Review privacy settings and physical placement:
- Determine who has access to view your camera feeds and when.
- If footage is stored in the cloud, read the provider’s security and privacy policies.
- Avoid placing cameras in highly private areas like bedrooms or bathrooms. Angle cameras carefully to capture only what’s necessary, and avoid inadvertently filming sensitive areas.
- Do some research on the camera brand. What is its privacy policy? How does it handle data? A reputable brand will have a clear security policy and a history of promptly addressing vulnerabilities.
- Disable features you don’t use: If your camera has features like remote access via specific ports that you don’t utilize, consider disabling them. Fewer open pathways mean fewer potential entry points for attackers.
“The goal isn’t to live in fear but to implement practical digital hygiene habits. Just as we lock our physical doors, we must also secure our digital ones. So set a strong, unique password, disable remote access if you do not need it, and keep the firmware up to date,” says Arbaciauskas.
ABOUT NORDPASS
NordPass is a password manager for both business and consumer clients. It’s powered by the latest technology for the utmost security. Developed with affordability, simplicity, and ease of use in mind, NordPass allows users to access passwords securely on desktops, mobile devices, and browsers. All passwords are encrypted on the device, so only the user can access them. NordPass was created by the experts behind NordVPN — the advanced security and privacy app. For more information: nordpass.com.
Related
This entry was posted on August 21, 2025 at 9:18 am and is filed under Commentary with tags Nordpass. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Guest Post – Hackers can spy on you through your own security cameras
You should check the security settings
Cameras. They seem to promise peace of mind. Yet a cascade of recent security incidents reveals a troubling truth: Many of these devices are less like tools to help us protect our premises and more like gaping holes in our digital defenses.
Just last month, cybersecurity researchers disclosed a now-patched critical security flaw in Dahua smart cameras, allowing attackers to hijack the devices and control them remotely. Earlier this year, a shocking 40,000 cameras were discovered streaming their feeds to the open internet, unprotected by even a basic password – revealing everything from office layouts to intimate domestic scenes.
California and Texas – the most exposed states in the US
Most of those unprotected cameras are in the USA, with California and Texas having the most exposed devices. Attackers need only the right IP address and browser to spy on homes and businesses. They can easily find IPs because IoT search engines constantly scan the internet and flag all the exposed services.
“These cameras – intended for security or convenience – have inadvertently become public windows into sensitive spaces, often without their owners’ knowledge,” reads the Bitsight report.
And then there’s the persistent cloud of doubt surrounding Amazon’s Ring cameras. In recent months, many users reported unauthorized logins. According to Amazon, it was just a “bug that incorrectly displays prior login dates,” but the company’s reassurances did little to quell users’ fears that their personal privacy is at risk.
Don’t leave “the door” unlocked
“It’s entirely understandable to be concerned, especially given the recent news. These devices, while offering convenience and protection, are essentially small computers connected to your network and the internet, making them potential targets. My advice to anyone worried about their privacy is to take a proactive approach,” says Karolis Arbaciauskas, head of business product at NordPass
“First, you should check if your cameras are accessible from the internet and set or change the default username and password. Many devices come with weak or publicly known default credentials. Manufacturers intentionally set simple passwords to make it easy for their owners to configure new devices. However, after doing so, you’re supposed to change the password and login information. The manual even often suggests doing so,” says Arbaciauskas.
Tips for securing cameras
To prevent hackers from spying on you through your own cameras, Arbaciauskas suggests reviewing your camera settings as well as your Wi-Fi settings. He offers some tips to help you stay safe:
“The goal isn’t to live in fear but to implement practical digital hygiene habits. Just as we lock our physical doors, we must also secure our digital ones. So set a strong, unique password, disable remote access if you do not need it, and keep the firmware up to date,” says Arbaciauskas.
ABOUT NORDPASS
NordPass is a password manager for both business and consumer clients. It’s powered by the latest technology for the utmost security. Developed with affordability, simplicity, and ease of use in mind, NordPass allows users to access passwords securely on desktops, mobile devices, and browsers. All passwords are encrypted on the device, so only the user can access them. NordPass was created by the experts behind NordVPN — the advanced security and privacy app. For more information: nordpass.com.
Share this:
Like this:
Related
This entry was posted on August 21, 2025 at 9:18 am and is filed under Commentary with tags Nordpass. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.