Among the many important aspects of IoT security, live cameras are one of the most open to misuse. People have been video snooping, watching private cameras and doing other sketchy things around connected cameras for many years. But in recent months, the intensity and risk around video have risen.
Video has breached privacy, or even security, in recent months in three main ways:
- Cyber criminals place hidden cameras in hotel rooms or home bedrooms. From there, they sell video clips or even live streams from those cameras online at scale.
- Attackers digitally break into a company that provides security video services. From there they gain admin access to the companies’ servers. They can snoop on the live feeds of schools, hospitals and even cybersecurity companies using their products and services.
- Threat actors exploit connected video cameras using insecure default configurations and other flaws.
It’s time to explore the potential for abuse (social engineering, blackmail, intelligence for sale and more).