The United Kingdoms National Cyber Security Centre (NCSC) has released an advisory on securing internet-connected cameras such as smart security cameras. Cameras that are not properly secured can expose vulnerabilities that can be exploited by attackers to obtain live feeds or images.
The following steps can help secure internet connected devices:
- Change your devices default password and create a strong password. More information on creating a strong password can be found in the following security tip from the CISA : Security Tip (ST04-002) https://www.us-cert.gov/ncas/tips/ST04-002
- Ensure the software on your device has been updated to the latest version released by the product manufacturer. More information on updating software can be found in the following security tip from the CISA: Security Tip (ST04-006) https://www.us-cert.gov/ncas/tips/ST04-006
- Secure the remote access feature. It is a good practice to choose cameras from manufacturers that provide a secure platform, e.g. a cloud solution that includes multi-factor authentication (MFA) methods to provide remote access and notifications when the remote access feature is used.
For more information on this advisory, follow this URL:
https://www.ncsc.gov.uk/news/consumers-urged-secure-internet-connected-cameras
The Guyana National CIRT recommends users and administration to review this advisory and to apply it where necessary.
References