The Search Engine For Hacking IP Cameras (Shodan)

Author: IPVM Team, Published on Sep 10, 2013

With the US FTC cracking down on an IP camera manufacturer for security / privacy violations, concern over camera vulnerabilities have increased significantly. In this note, we review an online tool that is rapidly gaining in popularity as the search engine to quickly find and compromise online devices like IP cameras. We show you how it is done with a video screencast that demonstrates how lightning fast this engine makes hacking cameras.

Background of Shodan

******** * ****** ****** **** ****** *** ** **** ******* connected ** *** ********. **** ***** ** ** *******, *******, and *******, *** **** **** *********** ******* **** ******* ******, SCADA *******, *** ******* *********. 

** *** ********** ******* ** ******** ********** **** ******** ** allow ********* ** **** ******* ********* ** *** ******** ***** their ********. ** *** *******, ****** **** ** *** *********** **** *** ******* **************. **** ** ******* ** **********, ****** ** ***** **** ** do * ***** ****** ** *** **** ********** ******* *** out ***** *** ********* ** *** ********. 

Where ** ******* * ******* 

**** ** *** ******* ******* ** *********** **** *********** ** ******. *** *******, ******* ******* *** dams ** ************ ** ************* ** **** ******* *******. ******* ******** controls *** ***** ******* *** ** ****** ***** ****** ** limited ** ********** *****. *******, **** *** **** ********* ** the ********, *** ****** ********** ** ****** ****, ***. **** leaves **** ******* ** ****** *** ***** ****** **** ** Shodan. *** ******* **** ** *** ***** ***********, ** ** important ** ****** ******* ******** ********.

******** **** ** ***** ** **** ****** **** ***** ****** for *** ** ********* ***** ** ****** * ***** *** limiting *** ****** ** ****** ******* * ****** *** *** without ****** * ************. ******** ***** ****** **** ** ********* ** **** ******* ** **** **** ** ******* ********* ***********. That ***** **** * ***** ******* **** ******* **** *** technical ****-*** ** ***** *** ******* *** ******** ** * utilities company. 

'Hacking' * ****** ** **** **** ** *******

** ******** **** ******* ** **** *** *** ** *****:

Shodan *** ** *******

******** *********** ***** **** *** ***** * *** ** **** ********* ******* **** ******* ** ** ******, ** *** next **** **** ** ** **** **** ***** ******* *** secure. The ******* **** ** ******* ** **** **** ** ****, ******* for *********** ** *********, *** ******* *********. ******* *********** *** readily ********* ****** (*.*., ********** ********* *********). *** ***, *** ******* *** ********** ******* *** ******* *** the ******* **** **** **-**** *** ******* **** ******** *** Foscam *** *** ****** *** *******, *** ****** *** ******* are ******* ** ****. 

**** ** ** ******* ** **** ****** ******* **** **** week ******* **** **** ******* ********* ********* ** *** ******** and ***** *********. ***** ** ***** ******* **** ************. *** fourth ** ***** ***** ******* ***** ***********. 

*** *** ****** ***** ********, *** **** *** *** ****** a **** **** *** *****, *** *** *** **** ******* PTZ ********. 

 

Impact ** ************ ***** *** *************

** **** **** *********** *** ****** ** ****** *** ****** ** ******* ********** ** ** *******. ** **** **** * *** ** ***** *** **** curious ***** **** **** *** ****. *************,***** ** ** *** to ** **** *** **** ****** *** ***** ** *** more ********* *******. *** ******* *** ** **** ******** ****** ***** be *** ************ ************* ** ******* *** ***** ** ****** default *********** ****** *** **.

Comments (9)

I'm going to assume that the use of this tool is being monitored by the feds...

Maybe it is the Feds....

"Matherly hopes people will be reluctant to hack devices if they have to provide financial information."

Well, hrrmm, where did I put that stolen credit card number...?....

How about email verification upon purchasing services online?

Well, hrmmmm, where did I put the login info for that stolen or made up email account....?....

I always wondered what would happen if I had a computer connected directly to the internet (not behind my router) and ran something like IQFinder or Dahua ConfigTool... what it would find out there...

Generally speaking, you should not have to hook up your computer direct to the Internet. But you might be a long time looking, expecially if the tool only let's you scan one newtork address at a time.

Back in the early days (2000) before people got the idea to run firewalls, a lot of people and businesses had computers directly connected without firewalls and with have shared folders exposed to the Internet. Sometimes an office would have a public IP address for all their computers and with shared folder access going across the Internet for everyone. I'd run across small doctors offices and other types of business. I'd try to find some sort of document with info on who they were and send them anonymous emails about their vulnerabilities. Sometimes I''d connect to their shared printers and try to send them a message that way.

One time I took a chance and called a private investigator directly who had shared folders with dozens of people's background checks all exposed on the Internet; dates of birth, SS#'s, all the places they ever lived. He was mad and suspicious at first, but then hired me to come clean up and secure his network for him. He became a good customer, and friend, until he passed away a few years later.

All that from scanning ISP IP ranges that were in my own area.

probably not much, those tools rely on Ethernet broadcasts on the local segment which would stop at your cable/dsl modem.

Useful information... for sales and best practices. Thanks.

Do you know if Shodan uses some identification in the network, so an application can know this program is looking for information in a given network?

Maybe the connection port is not common as a way from the creators of Shodan to give people the opportunity of step away?

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports on Hacking

April 2018 IP Networking Course on Apr 17, 2018
Only 1 day left to register for our IP Networking course. Register now. NEW - 2 sessions per class, 'day' and 'night' to give you double the...
TVT Backdoor Disclosed on Apr 09, 2018
Security researcher Bashis has disclosed a backdoor in TVT video surveillance products, with TVT issuing its own 'Notification of Critical...
P2P 'Fail To' 'Quick And Steady Access' - Hikvision Defends Port Forwarding on Apr 02, 2018
Following criticism of Hikvision's ongoing port forwarding recommendation (e.g., Hikvision Hardening Guide Recommends Port Forwarding and Hikvision...
Stats: Disclosing Vulnerabilities Responsibility? Researcher or Manufacturer on Mar 30, 2018
Getting prompt and appropriate information on vulnerabilities is important for integrators and end users to ensure that their systems are best...
Hanwha / Kaspersky Vulnerability Dispute Examined on Mar 29, 2018
IT media ran numerous reports in the past month featuring two prominent companies - Hanwha (previously part of mega manufacturer Samsung) Techwin...
Hikvision HQ Contradicts Cybersecurity Director on Mar 07, 2018
Hikvision HQ has contradicted Hikvision USA's Director of Cybersecurity, Chuck Davis. Davis - Don't Put Cameras On The Internet Davis made a...
New Whole Foods Installs Hackable Access Control (Upgraded) on Feb 21, 2018
Whole Foods has built a reputation for high quality. And their 2017 Amazon acquisition has increased that, plus added deep pockets for buying...
Remote Network Access for Video Surveillance Guide on Feb 21, 2018
Remotely accessing surveillance systems is key in 2018, with more and more users relying on mobile apps as their main way of operating the system....
IP Cameras Default Passwords Directory on Feb 09, 2018
Below is a directory of 50+ manufacturer's default passwords. Note: Change Default Passwords Leaving default passwords is dangerous and makes it...
Simplisafe 'All New' Generation 3 Tested on Feb 08, 2018
Feared by the traditional alarm industry, Simplisafe has launched its 'all new' Generation 3 platform that they declare is "Stronger. Faster....

Most Recent Industry Reports

Worst Access Control 2018 on Apr 18, 2018
Three access control providers stood out as providing the most problems for integrators. In this report, we analyze the answers to: "In the...
April 2018 IP Networking Course on Apr 17, 2018
Only 2 days left to register for our IP Networking course. Register now. NEW - 2 sessions per class, 'day' and 'night' to give you double the...
Axis VMD4 Analytics Tested on Apr 17, 2018
Axis is now on its 4th generation of video motion detection (VMD), which Axis calls "a free video analytics application." In this generation, Axis...
Arecont CEO And President Resign on Apr 17, 2018
This is good news for Arecont. Arecont's problems have been well known for years (e.g., most recently Worst Camera Manufacturers 2018 and starting...
Strong ISC West 2018, Says Manufacturers, GSX / ASIS Expected Weaker on Apr 17, 2018
Manufacturers say ISC West 2018 was strong, continuing the trend we have seen in 2017 results and 2016 results. However, those same 100...
Key Control For Access Control Tutorial on Apr 16, 2018
End users spend thousands on advanced systems to keep themselves secure, but regularly neglect one of the lest expensive yet most important aspects...
Best and Worst ISC West 2018 on Apr 16, 2018
ISC West 2018 had strong attendance, modest overall new products, and a surge in Artificial Intelligence marketing. First, here are 20+...
Alarm.com Business Market Expansion on Apr 13, 2018
Alarm.com has millions of subscribers, but the company has traditionally been mostly a residential/home focused offering.  ADC's new Smart Business...
GDPR For Video Surveillance Guide on Apr 12, 2018
The European Union’s General Data Protection Regulation (GDPR) comes into force on May 25, but there is much confusion and no clear guidelines on...
Axis Launches Mini Concealed IR PTZ on Apr 11, 2018
Axis has been a laggard in releasing IR PTZs. While the company released a laser focus PTZ (the Q6155-E tested) until now Axis has had no PTZs with...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact