Security cameras are a great way to monitor your home while you’re away, whether you’re monitoring your pets, keeping an eye out for intruders, or just making sure your packages arrive safely at your doorstep – and stay there. However, if you don’t take care to secure your cameras, hackers can gain access to them and start watching you. Fortunately, camera manufacturers offer easy ways to protect these devices against attacks. We’ll show you the basic steps to protect your privacy.
One of the most common mistakes is reusing the same password on more than one device or service. When a manufacturer or service provider experiences a security breach that exposes usernames and passwords, hackers attempt to gain access to other devices and service accounts using these stolen credentials. This recently happened to Roku customers through no fault of Roku.
Do you want to buy a security camera for your home? Check out our roundup of the best home security cameras for TechHive’s recommendations for every price level.
In one example specifically about security cameras, a California family’s Nest camera received a fake alert about a North Korean missile launch. In another situation, two men were charged with hacking Ring cameras to livestream swatting raids. That’s not to say hackers can’t gain access to your camera by exploiting known vulnerabilities in the manufacturer’s hardware or software; but in these two cases neither nest nor ring was directly responsible for the attacks. The security gaps were traced back to the respective owners of the cameras.
If you’re ready to throw your security cameras out the window now, don’t worry. There are several ways you can protect your security camera – and your home – from hackers. We consulted Vladimir Daschenko, a security evangelist at Kaspersky, to make sure we were on the right track.
1. Change the default passwords of your security cameras
Many security cameras come with default passwords, primarily to make the initial setup a little easier for new users. But because they are so easy to guess, changing the factory password is one of the first things you should do.
Daschenko recommended using a complex password for the device and any associated applications or services. The password should either be a random, nonsense phrase or contain a long string of characters (both lowercase and uppercase), numbers, and symbols.
Daschenko also recommends using complex passwords for the email address associated with the security camera (which you definitely should). Otherwise, hackers can access your email account and send a password reset to that email address, defeating the entire purpose of the complex password you just set.
2. Use a password manager
If you’re having trouble remembering all those complex passwords – don’t worry, we all do – then consider using a password manager. Password managers allow you to set multiple unique passwords for each service you use without having to remember them all.
Your password manager login is encrypted, so you only need to remember a single master password. There are a number of different password managers on the market; We recommend you take a look at PCWorld’s recommendations for the best password managers so you can choose your favorite.
3. Set up multi-factor authentication
In addition to using complex passwords, Daschenko also recommends using two-factor authentication. This adds an additional layer of security to accessing your security camera. If you choose to do this, you will receive a one-time passcode via SMS, email or via an authenticator app that you must enter in addition to your usual username and password. In general, it is preferable to use an authenticator app because it is less likely to be accessed remotely than text messages or emails.
Security cameras that offer two-factor authentication include those from Google, Ring, Eufy, and Wyze, among others. If your security camera doesn’t offer two-factor authentication, definitely get it for your email address (which you should have anyway).
4. Update the camera’s firmware
One of the biggest mistakes most security camera owners make is simply plugging them in, setting them up, and then forgetting about them. Because software bugs and security vulnerabilities are constantly being discovered, it’s important that you update your camera’s firmware regularly.
These updates fix known vulnerabilities so you can stay one step ahead of hackers. Some cameras download updates automatically. others may require a manual update. In any case, it doesn’t hurt to check your camera’s settings from time to time to make sure your firmware is up to date. The same applies to the camera’s monitoring software.
5. Enable end-to-end encryption
In addition to ensuring that your camera adheres to current security protocols and encrypting private information such as your username and password, you should also enable end-to-end encryption if your camera has this feature. This essentially ensures that no third parties get access to your videos or live feeds. Ring is an example of a manufacturer that supports end-to-end encryption, but you have to enable the feature – it’s disabled by default.
6. Stay informed
Finally, it’s worth doing a little research on the manufacturer of your security camera from time to time to see if there are any publicly known cases of vulnerabilities. “Try to analyze how the provider responded,” Daschenko said. “If the provider fixes everything, goes public and admits their mistakes, you can trust them.”
Daschenko also recommends finding out if the provider’s website has a section dedicated to cybersecurity issues. “This suggests that the provider is paying attention and working more closely with third-party researchers,” he said.