Odds of Being Watched from a Second Hand WI-FI Security Camera

I came across some Swann WI-FI security cameras that are used and go for a pretty good price. However, I was just wondering what are the odds of them still having the cameras linked to their account or still keeping some sort of a serial number of the cameras enabling them to access them when I set them up.

Just a thought I want to see what others think as I remember a guy I know who was able to see someone else's feed when the Eufy cameras had that security bug. Might buy a brand new kit if this is a genuine concern.

Don't know what strange species of a person would want to watch me lay eggs lol

Comments

  • +3

    2 to 1

  • +1

    200%

  • +1

    Don't most camera have a hard reset button?

    https://support.swann.com/s/article/tAM37IZ5qr
    https://support.swann.com/s/article/l3lzrlpgFI

    Doing so will wipe the NVRAM on the device basically clearing it of it's settings. think of it like clearing / factory resetting BIOS on a computer motherboard.

    All IP camera ecosystems will have their vulnerabilities, if you're concerned about that you'd just have to use your cameras without connecting them to the internet and use a dedicated NVR / NAS NVR.

    • Yeh I'll reconsider NVRs. Wasn't really bothered setting up remote access which is what drew me to WI-FI cameras, although I had another look and it doesn't seem that annoying.

      With the hard reset button though even if a person kept the serial number etc they wouldn't have access to it?

      • +3

        I don't think a device's serial number is used as part of the authentication process (i.e it's just a number used to uniquely identify the hardware for manufacturing purposes). You're more likely to suffer a breach via other methods like credential stuffing, or from a misconfiguration on the manufacturer's provided cloud servers. As was the case with Eufy.

        • Right got it.

          Cheers scrimshaw

        • Many brands use devices serial number for their cloud services. The serial number is then paired with the customer's account.

          Best practice is to factory default/reset the cameras and the recorder. Based on experience, some brands still have the previous account attached to cloud services even after reset so it's good to double check that the account is properly removed. Or even better, prevent the devices to have access to the internet.

  • Really really rare.

    People watch me on my cameras at home because I am REALLY interesting.

  • I worked say very low. But if you are unsure, don't buy. Your rational price saving may cost more than your peace of mind.

  • +1

    Agreed with others on using hard reset to ensure it isn't linked to an account anymore (assuming there is one).

    Whenever buying something like that I'd just google <name of product> and "security vulnerability" to see if there's any known issues. Whilst this won't work for everything, it does flush out stuff like D-Link's IP cameras have had a notorious track record of not being updated a couple of years later after many vulnerabilities were found/exploited and that steered me away from buying them (new or second hand).

  • +7

    Don’t worry about cameras/phones/tvs.

    Your vacuum cleaner has been gathering dirt on you for years.

  • Swan are rubbish

  • How much are you getting the swans for? You can get brand new reolink for $50 that are 5MP and power over ethernet.

Login or Join to leave a comment