Hello, welcome to the Tuesday, April 30th, 2019 edition of the Sandtonet Storm Center's Stormcast.

My name is Johannes Ulrich and I'm quoting from Augusta, Georgia.

One feature in modern consumer-crate firewalls that probably made the biggest difference when it comes to

protecting the various devices that users are connecting to the network is NAT. Now, Nat never really

meant to be a security feature. That's a reasonable good job in preventing so of these random,

unsolicited, inbound connections.

But it doesn't help at all, of course, is outbound connections.

And apparently this is a problem again with security cameras in particular, those that

support the iLink p2p protocol.

I link p2p essentially instructs the camera to connect outbound to a specific server that is

associated with that cameras manufacture.

And if you are owning one of these cameras, the only thing you need to know in order to connect

back to your camera is a unique

UID, which is essentially a serial number.

Problem of course is these UIDs are predictable, so an attacker could easily scan for security

cameras by connecting to a particular manufacturer's server and just essentially

prude for us different serial numbers. Security researcher Paul Mara Pise took a quick look at

some of these servers and he discovered about 2 million connected devices and he was able to connect

to devices just knowing their serial number.

Now, you still need the username and password to actually log into the camera,

but of course if users aren't aware that the cameras are actually exposed in this manner,

they may not bother setting a strong password or changing defaults passwords at all. Also, the communication

...