"But what is the ultimate point of this theoretical hack? All that effort just to mess with a camera?"
- Whatever the reason may be, focus should be on 'how to make a bulletproof system' rather than leaving a security hole just because of.. 'all that effort just to mess with a camera?'
"If the hacker can already get onto the network, then he can attach any device he wants to do whatever, no need to take over a camera for some kind of attack."
- As John mentioned, getting network access is a bigger challenge. If a hacker is seriously thinking about having unauthorized access to someone's video surveillance system then he would first want to know what kind of a camera system his target is using so he can better prepare himself to access the system and yet go undetected without raising any red flags on the network or camera system side.
"And if someone really wanted to know the camera brands, they could probably just find an opportunity to get a better picture in the first place (use a real camera, zoom lens for your phone, etc.)."
- Yes, but in the specific scenario above, camera brand/model is not printed at all. In my experience some customers specifically request to hide camera brand and name as a security measure. Why publicly give out what brand/model security camera am I using on my property?
"Further, because IPVM is subscription-based and people have to sign up with credit cards, this would be an odd place for someone with that kind of ill intent to make such a post."
- I did not comment to judge on anyone's intent behind the post. I simply shared my views on how little things can create a security hole in the system.
"I think your suspicions of UD1 being some kind of hacker are better suited for a Hollywood script :)"
- There is no suspicion on my end, I just shared what if... with an example hacking strategy.
Cheers :)