 |
Photos of a photo studio customer changing clothes in Hanoi have been leaked, the latest incident showing that security cameras can be exploited without basic security measures. |
Security cameras are one of the popular devices for monitoring and surveillance of homes and public areas. Besides the benefits, many people are still concerned that images from cameras can be accessed and spread publicly, especially with sensitive videos .
According to experts, there are many reasons why security cameras are vulnerable to hacking. In addition to not updating the software regularly, setting a poor password is also one of the common causes.
Common mistakes when using security cameras
Responding to Tri Thuc - Znews , Mr. Le Phuoc Hoa, a member of the Anti-Fraud security project, said that one of the common errors that makes security cameras vulnerable to attack comes from not changing the default password on the management software.
“Many cameras still use default names/passwords like 'admin', '123456', which become an open door for hackers to break in,” Mr. Hoa shared.
The next reason comes from an insecure network configuration. Many people open up direct access to the camera over the Internet without a layer of protection (VPN or firewall). When it is open to the public, hackers can easily access the camera by scanning the IP address.
Another common issue is the camera’s operating system (firmware), which can contain security vulnerabilities. Manufacturers regularly release patches, but not everyone updates their devices in time.
“Not updating firmware leads to security risks. Many devices have security holes and errors that are fixed by the manufacturer, but users never update,” Mr. Hoa emphasized.
 |
Passwords that are too easy to guess can increase the chances of your camera being hacked. Photo: WSJ . |
Sharing accounts with multiple people is also a common habit. Giving your camera access account to family or other people can increase the risk of password disclosure. Next, using cloud storage services of unknown origin or foreign servers can also make data vulnerable to intrusion.
The next common mistake is connecting the camera to the same Wi-Fi network as a personal device (smartphone, computer...). According to experts, this leads to the spread of infection in the internal network when a hacker penetrates a device.
“Many customers do not clearly understand information security principles and do not have much knowledge about cyber attack prevention techniques.
In addition, due to objective or subjective factors, the technical team may skip the system security setup process when installing security cameras," Mr. Hoa added.
What to do if the image is leaked?
To ensure safety when using security cameras, the first responsibility belongs to the supplier when installing and setting up a security system for customers. On the contrary, the user himself needs to understand some solutions to enhance security.
According to Mr. Le Phuoc Hoa, users need to change to a strong password as soon as the camera is installed. The recommended password has at least 9 characters, including uppercase letters, lowercase letters, numbers, and special characters.
If the software supports it, you should create separate access accounts for each person and assign appropriate permissions. You should regularly update the software and firmware periodically to receive the latest security patches (enable automatic mode if available).
Next, you should separate the camera from the main Wi-Fi network, only connect to a private network for the camera instead of sharing the network with your laptop or phone. When accessing the camera over the network, only access it via VPN or a platform with 2-layer authentication (set up a separate NAT or VPN for remote access).
In addition, users should prioritize choosing devices and services from reputable suppliers with clear security policies and data servers located in Vietnam or a trusted country.
“Customers should use the above safety steps to request full implementation from suppliers when installing equipment,” shared a representative from Anti-Fraud .
Mr. Nguyen Manh Luat, CEO of CyberJutsu Academy information security training center, said that when detecting a security camera system being compromised, users should immediately disconnect the camera from the Internet by unplugging the LAN cable or turning off Wi-Fi.
Next, change all passwords for the admin account, cloud storage account, and related email account. In addition, notify the device or cloud service provider to lock the account and review access information.
 |
Camera images being publicly released on the Internet is not a new problem. Photo: Korea JoongAng Daily . |
“If there are signs of privacy violations or illegal image dissemination, it is necessary to report to the Department of Cyber Security and High-Tech Crime Prevention (A05 - Ministry of Public Security ) or local police.
When being blackmailed, absolutely do not transfer money to the attacker but immediately notify the authorities," Mr. Luat emphasized.
In fact, Vietnam has a set of technical safety standards for surveillance cameras. From January 1, 2026, IP cameras officially circulating in the country must have a certificate of conformity, including requirements on security, vulnerability management, software updates, secure session management, communication channel management, secure device configuration access and user data security.
For example, the regulation includes that passwords generated must have complexity requirements (minimum length of 8 characters, including uppercase, lowercase, numbers, and special characters). With the vulnerability management requirement, the manufacturer must have an online system to receive and publish information about vulnerabilities, provide descriptions of affected versions, and instructions for updating and handling vulnerabilities.
With the secure session management feature, the criteria set requires manufacturers to create secure session keys and automatically log out of the app after a period of time. The company must also apply encryption methods based on Vietnamese or international standards, using versions that do not have vulnerabilities or weaknesses in network information security.
Regarding user data security, the camera must be able to protect personal data, allowing the setting up and configuration of locations in Vietnam to process, store and exploit data. Sensors that collect data must list categories, describe functions, operating principles, and notify locations for data storage and processing.
Source: https://znews.vn/ly-do-khien-hinh-anh-camera-bi-lo-tren-mang-post1600828.html
![[Photo] "Ship graveyard" on Xuan Dai Bay](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/11/08/1762577162805_ndo_br_tb5-jpg.webp)
![[Video] Hue Monuments reopen to welcome visitors](https://vphoto.vietnam.vn/thumb/402x226/vietnam/resource/IMAGE/2025/11/05/1762301089171_dung01-05-43-09still013-jpg.webp)
Comment (0)