The web of things is here, bringing with it devices that are mostly not so safe. From time to time we have published several cases of hacks in baby monitor cameras.
After numerous reports of hacked devices used to monitor babies, the New York Consumer Department has launched a survey of children's companies manufacturing these devices and security protocols they use.
According to the statement of New York DCA Commissioner Julie Menin:
"Video screens intended for parents who want to watch their young children are not safe, as they provide easy access to any predator that wants to watch what our children do and say."
"Internet-connected devices such as video surveillance screens are very practical - but without proper safeguards, they pose a serious risk to the privacy of those who use them. We encourage parents to take appropriate steps to ensure that their devices are safe and to ask manufacturers to make their safety a top priority. ”
The Federal Trade Commission has reviewed five popular baby monitors and discovered that four of them gave easy access to anyone interested.
Only one in five used a strong password, while the others used easy passwords such as the ever-popular "password."
In addition, two out of five did not use any encryption between the screen and the router, while the third one had absolutely no encryption between the router and the internet.
Rapid 7 security company had similar findings after testing 9 baby monitors.
"Eight of the nine cameras got an F and one got a minus D," says Rapid 9 security researcher Mark Stanislav.
"Each device contains a hidden account that the consumer can not change. Whether it's an administrator account or a support account, it gives backdoor access for hacks to the camera. ”