However, and in addition, whoever let this camera on a public IP address without any firewall or barrier is an idiot.
Btw, is this really what passes for art in 2015?
John, have you published a guide on how to use firewalls to secure cameras on a public IP? A "friend of mine" may or may not be such an idiot as this. I would like to give this "friend of mine" some pointers on securing the cameras he installed in a municipal park.
One important point to prevent hacking, is to make sure to use a router. Many people put an IP camera at a remote location directly on the modem. If the camera has other services/ports exposed, they are now accesible. Using a router, and ONLY forwarding the necessary ports now provides another level of security (assuming the router isn't vulnerable and has passwords changed).
IPVMU Certified | 07/06/15 03:02am
VERY good discussion to say the least. I was under the impression that ONVIF was in the process of releasing a Profile that would make changing default passwords mandatory. If so, this incident highlights the expediency of such a profile.
IPVMU Certified | 07/06/15 04:53am
If IP cameras are running Linux maybe they can run a firewall.
IPVMU Certified | 07/06/15 06:13pm
If you want to see some more, have a look at www.shodan.io ans you'll find lots of camera's with default user credentials.
By the way, don't forget to secure your WiFi to. Routers and firewalls are all nice but if you put up an unsecured/badly secured WiFi network behind them, the door is still open (allthough you need to be in the range of this WiFi network to get in off course)