Insecam.com has feeds from internet protocol cameras (or IP cameras) all over the world.
The commonly used security cameras feed images to the internet via Wi-Fi so their owners can check up remotely on everything from their homes and businesses to children’s rooms while they are away.
Don Cairns of EyeSee Computers in Winnipeg sells thousands of the cameras every month.
He said people buy them to protect themselves, but don’t realize they’re vulnerable to security breaches.
“People are buying a lot of cameras and surveillance systems because vandalism is rampant now,” he said. “Break-ins — I mean, there’s just a number of reasons why people want to feel more secure and are buying these cameras.”
The cameras often come with default passwords, and many people never change them.
That’s where Insecam comes in. The site accesses the feeds using default passwords and broadcasts them.
CBC News accessed several feeds from various locations in Winnipeg on Friday, including one at a car insurance sales office, a candy store, a tattoo parlour and others aimed at people’s front doors, backyards and properties.
Insecam claims on its website to be broadcasting the footage as a warning to people that their private security footage is accessible to everyone.
In the FAQs section of the website, organizers agree to remove any camera feed when asked.
“If you want to leave your surveillance camera public accessible but want to remove it from this site send the URL of your camera to email from contacts section. But remember that your camera still will be available to all internet users,” the site reads.
Insecam has drawn criticism online because it sells ad space next to the footage.
In an email to CBC News, a representative from Insecam said, “The only solution to solve the problem is to make a panic in media. There is no way to contact a camera owner e.g. by IP.”
If your private images have been broadcast online, there could be few avenues for recourse.
Andrew Buck of Pitblado Law in Winnipeg handles online privacy cases and said they can be extremely difficult and costly to pursue when you don’t know who is behind the breach.
“It’s tough because one of the things you have to ask yourself is, against whom am I going to be taking recourse?” said Buck. “It becomes really difficult to find a remedy, because you have to understand and find out who is behind [it] … servers can be located anywhere.”
Even if the individual’s identity is known, the person’s location also plays into any potential legal action that could be taken, Buck said.
“Just because we're here in Canada, if someone else is somewhere else in a different country, our laws may or may not apply to them,” he said. “Even to the extent that our laws apply, getting a remedy that you can enforce becomes difficult."
As for Insecam, it notes on its website none of the cameras it broadcasts images from have been hacked.
“Owners of these cameras use default password by unknown reason. There are a lot of ways to search such cameras in internet using Google, search software or specialized search sites,” the site says.
IP cameras popular, cheap solution for many
Cairns said while IP cameras can be vulnerable to hacking, there are benefits to using them.
“[IP cameras] are getting very, very popular now,” said Cairns. “You can have a lot more control with IP, and the installation and the cableing is less money when you go over the internet … The IP cameras are somewhat better in price. The cableing is very expensive for [other cameras.]”
He said the best way to protect yourself is to change your password immediately and never use a default out of the package.
But, Cairns warned these cameras can be hacked even if you do change a password beforehand, and even big names in the industry have been hacked.
“Do a lot of research … and find out which of the IP network video recorders are not at risk of being hacked or have protected themselves,” said Cairns.
Cairns said hackers and other people can use the cameras to plan break-ins or to alter footage of illegal activity.