Homes, children sleeping and old age pensioners sitting in their homes are being spied on by hackers using webcams installed in Australian homes.
In some cases thieves are able to look inside a home to see if anyone is home.
An investigation in the UK by the Daily Mail, has revealed that several security cameras sold in Australia are being accessed by hackers to view into homes because a default password has not been changed. The images from these cameras are available on a web site for anyone to view.
Two cameras manufactured by Chinese Companies were identified.
In Australia one of these cameras is marketed by Foscam Australia. The Melbourne based Company makes no reference to the fact that they are a direct sell Company selling a Chinese made camera.
Another camera exposed by the Daily Mail was manufactured by Hikvision whose products are distributed in Australia by Central Security Distribution a NSW based Company.
Daily Mail investigators were able to see security camera footage from inside homes, offices and shops being intercepted and broadcast live on the internet – without the owners’ knowledge.
 Click to enlarge |
 Click to enlarge |
 Click to enlarge |
 Click to enlarge |
During a two-hour period they watched an internet website – available to Australians- and saw footage that included, a baby in her cot, a boy on his phone, the inside of a vicar’s church changing room
The website claims that they can hack into 57,000 webcams in 154 countries including Australia.
There was also a boy asleep in his bed and two men in a kitchen sharing a meal.
If you have installed a web based camera that can be hacked in this way, you could be being watched now claim the experts.
Professor Alan Woodward, a cyber-security specialist, said: ‘The really scary thing is that people buy these cameras for their own security. But they have no idea that thousands of people might be spying on them at any one time.’
Cashiers and hotel receptionists are observed in close-up from cameras fixed to walls behind them; there is footage from inside a hair salon; women can be seen having their nails manicured and another stream shows men lifting weights in a gym.
Technology expert Shawn Day said there was worrying potential for the footage to be exploited by criminals. He told the Daily Mail: ‘There was one camera in an office and I could actually read the screen of the computer where they could be entering private information such as passwords, but it’s fully displayed to the world.
‘It’s not just the creepy feeling that you are being seen, which is the main concern, it’s also the content of what is being seen. We’re talking about financial information, private information – exactly the sort of stuff the camera is designed to protect, but is doing the opposite.’
The Mail on Sunday was able to watch footage showing scores of people inside their homes, who were oblivious to the fact that they were being observed.
The new method of hacking a web camera is a simple process as most cameras that connect to the internet come with a default username and password which most people do not realise they can – and must – change.
If owners fail to do so, their live feed, which they can access from smartphones, could also be picked up by hackers who scan addresses on the internet until they find an exposed IP camera. Experts fear large numbers of such cameras are vulnerable to hacking.
How to protect yourself
1. Ensure the camera you buy allows you to change the default password.
2. If manual doesn’t explain how to do this, call manufacturer and get clear guidance.
3. Take time to set up a strong password and change it regularly.
The owner of one business who was using Hikvision cameras said: ‘We got these cameras to try to keep our property safe but we never imagined that people are looking at our house and what we’re doing. Burglars could see when we’re out.’ After being alerted, the travel agent and homeowner both changed their passwords. Their footage is no longer available online.
Many of the hacked cameras used by parents are made by another Chinese company, Foscam.
A spokesman at Foscam said it was aware of hacking and will now ‘force’ users to change passwords. It is not clear who is behind the hacking website, but The Mail on Sunday established that it is ‘hosted’ by a company called MediaNet based in the Moldovan capital, Chisinau.
