As security cameras are widely used, relevant security incidents caused by cameras are not uncommon nowadays. Once the network composed of a large number of cameras is hacked, your privacy leaks after the cameras collect video and are controlled by the attackers. Therefore, it is time to learn some skills in order to secure your security cameras:
- Secure your wireless network with WPA2. Once the attackers gain access to one device, they can use it to take control of other connected devices on the same network. In this case, WPA2 as a type of encryption used to secure the vast majority of Wi-Fi networks should be necessary. A WPA2 network provides unique encryption keys for each wireless client that connects to it. Besides, you can use a virtual private network, or VPN, to further restrict which devices can access the network.
- Keep your camera’s firmware up to date. If the manufacturers are serious about protecting the cameras they make, they should routinely release firmware updates. By updating your firmware regularly, software bugs can be fixed and security vulnerabilities can be patched. Even though some cameras will automatically download and install these updates, it is good to check frequently as sometimes it may require you to check for updates on your own.
- Change your camera’s password. According to a survey regarding data privacy conducted in May 2019, there was 13% of respondents state that they use the same password for all of their online accounts. Thus, hackers will be able to gain access to multiple accounts of one victim. It is time to always create a unique password for each account: DO use some long passwords containing a random phrase or string of characters like the combination of numbers, symbols, and both uppercase and lowercase letters. DO NOT use personally identifiable information (PII) such as names, birthdates, etc. as passwords because hackers can figure out this info through social-engineering.
- Watching out for hacked passwords. Hackers had used a technique called credential stuffing to hack in the Ring cameras. With this technique, hackers can try out the lists of stolen usernames and passwords on a variety of different accounts. Nowadays, hackers have even created a software tool to make this process automative in order to hack Ring cameras specifically. Some tools may help: a plug-in for the Chrome browser may help you to verify if your passwords have been compromised in a data breach. These services draw from a massive database of stolen credentials created by the service Have I Been Pwned, where you can also check which data breaches you’ve been involved in.
- Set up Multi-factor/two-factor authentication if your camera offers it. MFA/2FA can provide an extra layer of security as it will send you a one-time-use passcode via a text message, phone call, email, or authentication app that you input in addition to your username and password when you log in to the account. With MFA/2FA, hackers would not be able to access your camera unless they can obtain your one-time-use passcode.
Contact LIFARS Immediately if Your
Organization was Hit with a Data Breach