02-18-2021 , 12:32 AM
Hundreds of thousands of individuals are potentially affected by this vulnerability.
A vulnerability affecting multiple baby monitors could allow someone to drop in and view a camera’s video stream, according to researchers. Potentially hundreds of thousands of live devices are impacted, they said.
The issue exists in the manufacturers’ implementation of the Real-Time Streaming Protocol (RTSP), which is a set of procedures used by various cameras to control their streaming media. It’s possible to misconfigure its implementation, so that no authentication is needed for unknown parties to connect, according to the SafetyDetectives cybersecurity team.
“Whilst this means that potentially harmful individuals could be able to access private images of your children, their bedrooms and possessions, this specific vulnerability is also concerning with regards to daycare centers – which are commonly known to stream video from inside kindergarten for onlooking parents and guardians,” researchers said. “If your baby monitor or any RTSP camera does not require parties to enter a password each time they connect to the video stream, the images shown on that stream are potentially unsecured, and therefore accessible to anyone.”
The specific models that the team tested that proved to be vulnerable include the Hipcam RealServer/V1.0; the webcamXP 5; and the Boa/0.94. 14rc21.
Initial research on Shodan showed large numbers of vulnerable devices connected to the internet, all over the world.
“Our team was able to identify unsecured devices either through their ‘server header,’ or their onscreen overlay that details the particular brand,” according to researchers, writing on Tuesday. “A server header is a strip of information provided with RTSP that details numerous factors, including the device type. The server header gives us evidence of which devices provide unauthorized access.”
Hundreds of Thousands of Potential Victims
The SafetyDetectives team first uncovered 110,000 open camera streams.
“Of these cameras, over half of them are being used as CCTV, providing surveillance for shops or the exterior of properties,” they explained. “Around 10 percent of these cameras are used for viewing house interiors, like living rooms or hallways. Most of the remaining cameras are baby monitors, being used to check up on children, or as cameras in child daycare centers, or retirement homes.”
Given the number of people in a daycare center at any given time, the number of individuals affected could be quite high, according to the report.
“There’s also the possibility that there are hundreds of thousands of additional streams yet undiscovered, that we simply do not have the time to sift through,” researchers said.
What Causes this Data Exposure?
The SafetyDetectives team didn’t provide granular technical details, but in general found four primary reasons for why baby monitors can become unsecured.
Devices designed for local networks are streamed over the internet.
Some devices can be misconfigured for use outside of a local network, without adequate authorization.
IP webcams that are repackaged as baby monitors.
Manufacturer oversight.
On the first two points, baby monitors are designed for use on local networks that are linked together in one physical location, such as a residence, an office or a school. Thus, some allow local devices to connect to their streams freely, with the assurance that the privatized, local network itself will provide enough security.
“Unfortunately, if an organization (such as a daycare center) was to stream with this type of device online and the connection isn’t password-protected, there are no security procedures in place to stop anyone from gaining access to these cameras,” according to the researchers.
Some cameras also allow a direct connection to a laptop or computer that also has access to the internet, opening up a potential attack avenue.
Source
A vulnerability affecting multiple baby monitors could allow someone to drop in and view a camera’s video stream, according to researchers. Potentially hundreds of thousands of live devices are impacted, they said.
The issue exists in the manufacturers’ implementation of the Real-Time Streaming Protocol (RTSP), which is a set of procedures used by various cameras to control their streaming media. It’s possible to misconfigure its implementation, so that no authentication is needed for unknown parties to connect, according to the SafetyDetectives cybersecurity team.
“Whilst this means that potentially harmful individuals could be able to access private images of your children, their bedrooms and possessions, this specific vulnerability is also concerning with regards to daycare centers – which are commonly known to stream video from inside kindergarten for onlooking parents and guardians,” researchers said. “If your baby monitor or any RTSP camera does not require parties to enter a password each time they connect to the video stream, the images shown on that stream are potentially unsecured, and therefore accessible to anyone.”
The specific models that the team tested that proved to be vulnerable include the Hipcam RealServer/V1.0; the webcamXP 5; and the Boa/0.94. 14rc21.
Initial research on Shodan showed large numbers of vulnerable devices connected to the internet, all over the world.
“Our team was able to identify unsecured devices either through their ‘server header,’ or their onscreen overlay that details the particular brand,” according to researchers, writing on Tuesday. “A server header is a strip of information provided with RTSP that details numerous factors, including the device type. The server header gives us evidence of which devices provide unauthorized access.”
Hundreds of Thousands of Potential Victims
The SafetyDetectives team first uncovered 110,000 open camera streams.
“Of these cameras, over half of them are being used as CCTV, providing surveillance for shops or the exterior of properties,” they explained. “Around 10 percent of these cameras are used for viewing house interiors, like living rooms or hallways. Most of the remaining cameras are baby monitors, being used to check up on children, or as cameras in child daycare centers, or retirement homes.”
Given the number of people in a daycare center at any given time, the number of individuals affected could be quite high, according to the report.
“There’s also the possibility that there are hundreds of thousands of additional streams yet undiscovered, that we simply do not have the time to sift through,” researchers said.
What Causes this Data Exposure?
The SafetyDetectives team didn’t provide granular technical details, but in general found four primary reasons for why baby monitors can become unsecured.
Devices designed for local networks are streamed over the internet.
Some devices can be misconfigured for use outside of a local network, without adequate authorization.
IP webcams that are repackaged as baby monitors.
Manufacturer oversight.
On the first two points, baby monitors are designed for use on local networks that are linked together in one physical location, such as a residence, an office or a school. Thus, some allow local devices to connect to their streams freely, with the assurance that the privatized, local network itself will provide enough security.
“Unfortunately, if an organization (such as a daycare center) was to stream with this type of device online and the connection isn’t password-protected, there are no security procedures in place to stop anyone from gaining access to these cameras,” according to the researchers.
Some cameras also allow a direct connection to a laptop or computer that also has access to the internet, opening up a potential attack avenue.
Source