Expliot turns thousands of home and business security cams–including FBI cam?–into spy cams (Examples)
Posted by Anonymous on February 9, 2012
Viewable by anyone (use Firefox) and they don’t know it: A security camera in a dress shop, Dhaka, Bangladesh, Asia. There are thousands more around the world due to a security flaw. UPDATE: This particular is fixed and no longer viewable.
TRENDnet announced that upwards of 50,000 cameras, comprised of 26 vulnerable models have been identified which are vulnerable to the threat of being used for reverse surveillance.
An article on BBC.co.uk indicates that as 7 of the 26 vulnerable models have patches to faulty code already released and the owners would be notified of the available updates. The scary thing is, only about 5% of these cameras are registered, leaving tens of thousands of potential owners vulnerable.
If you are using one of these cameras in your home or business, it would be a smart move to search out the updated firmware immediately to insure your privacy remains intact.
There are many live cams, some in people’s houses still operating. It’s spooky, especially all the babies in cribs, a camera focused on a bed of an adult woman with really long hair in Pompano Beach, Florida and one feed I found that says “FBI MONITORING UNIT DELTA”.
Just checked again and that one is taken down. It was just some random house surveillance in the state of Maryland. I hope it was just a joke, that the camera operator was not really with the FBI.
These are not supposed to be viewable, but they are, and people don’t know it yet. Here are just four of thousands (location based on IP lookup):
Here’s a live security cam in an elevator in Burnaby, BC Canada.
Here is a live security cam of a server room in Sao Paulo, Brazil.
Here is a live security cam outside of a hotel in League City, Texas.
Here is a live security cam in a high security hallway in Rio de Janeiro, Brazil.
People are posting screen captures all over the net now, with comments. Like this one: “wtf with the stick holding the door closed? they look like hackers …”
Best to assume someone is always viewing your iPhone (both cam in front and in back) and the camera built in to your laptop… It is just a matter of time before I post news about that, the exploit that lets us view any camera phone in real time without alerting the user. If you don’t think that ability is build in to all modern phones, think again. Then again, who cares? It’s actually all very boring, but still creepy.
Just in case you missed it, here is a good master list of web cameras that can be found through Google without much effort on the part of the Google hacker.
allintitle: “Network Camera NetworkCamera” – Network cameras
Several of these type of searches reveal cameras you can control. I was able to pan and tilt and look around with a few of them.
intitle:Axis 2400 video server Mostly security cameras, car parks, colleges, clubs, bars, etc.
intitle:axis intitle:”video server” Mostly security cameras, car parks, colleges, bars, ski slopes etc.<
intitle:”EvoCam” inurl:”webcam.html” Mostly European security cameras
intitle:”Live NetSnap Cam-Server feed” Network cameras, private and non private web cameras
intitle:”Live View / – AXIS” Mostly security cameras, car parks, colleges etc.
intitle:”LiveView / – AXIS” | inurl:view/view.shtml Mostly security cameras, car parks, colleges etc.
intitle:liveapplet Mostly security cameras, car parks, colleges, clubs, bars etc.
intitle:snc-cs3 inurl:home/ Mostly security cameras, swimming pools and more etc.
intitle:”snc-rz30 home” Mostly security cameras, shops, car parks
intitle:snc-z20 inurl:home/ Mostly security cameras, swimming pools and more etc.
intitle:”WJ-NT104 Main” Mostly security cameras, shops, car parks
inurl:LvAppl intitle:liveapplet Mostly security cameras, car parks, colleges etc.
inurl:indexFrame.shtml “Axis Video Server” Mostly security cameras, car parks, colleges etc.
inurl:lvappl A huge list of webcams around the world, mostly security cameras, car parks, colleges etc.
inurl:axis-cgi/jpg Mostly security cameras
inurl:indexFrame.shtml Axis Mostly security cameras, car parks, colleges etc.
inurl:”MultiCameraFrame?Mode=Motion” Mostly security cameras, pet shops, colleges etc.
inurl:/view.shtml Mostly security cameras, car parks, colleges etc.
inurl:/view/index.shtml Mostly security cameras, airports, car parks, back gardens, traffic cams etc.
inurl:viewerframe?mode= Network cameras, mostly private webcams etc.
inurl:”viewerframe?mode=motion” Network cameras
inurl:ViewerFrame?Mode=Refresh Mostly security cameras, parks, bird tables etc.
Remember to try to keep those web cameras safe, and not on when not using them. Otherwise you never know who will be watching your web camera in your living room.