CCTV cameras are thought to be the final frontier in protecting physical assets and humans against crime. However, over the years, security cameras have themselves become serious threat vectors due to the use of default administration passwords and other vulnerabilities. Like webcams are used for video and Skype chats, security cameras are a fine value addition to the security apparatus because they offer irrefutable proof of people in the act of breaking into or entering a crime scene. However, the very same security cameras in the hands of criminals can be a security nightmare. Last week we have had hackers use such one million vulnerable CCTV cameras to build botnet army to attack their enemies with DDoS attacks. In fact, security cameras are most vulnerable because most of the people who deploy them don’t change their default username and password making it a cakewalk for hackers to hack them. In the video below, Sophos researcher James Lyne shows you how to hack a security camera. It’s alarmingly easy and should concentrate minds in the security industry – and that that applies to manufacturers, installers and CCTV operators alike.