These cameras – which millions of Americans use to remotely monitor their homes, offices, businesses, pets, and loved ones – are often shipped to consumers with default user names and passwords that are publicly available. By not changing these default settings, many consumers allow their IP cameras to broadcast unsecured, and sometimes unencrypted, live video feeds across the Internet.
Using simple software, anyone can identify IP cameras whose default settings haven’t been changed.
A hacker could gain access to the camera’s settings using the default logins. He or she could view the camera’s live feed and identify the geographical coordinates of the camera.