Too many cameras exploits in the wild these days indeed.
Need a OSS system for the cameras, just like OSS firmware such as Openwrt to replace vendor firmwares.
Camera itself does not have enough resource to deal with DDOS or brutal-force attach or updating-with-CVE-quickly if they'are exposed to the public internet _directly_, they should sit behind some firewall. I hope those important cameras, or privacy-concerned cameras, are at least not installed with a public IP, not sure if that is true though, otherwise more exploits will keep coming.
That may be based on vendor implementations - I think there are a bunch of consumer routers or there that are based on reskinned old versions of OpenWRT.
yes the key is OSS openwrt instead of vendor-specific openwrt, which is normally lagging behind still, probably slightly better than closed vendor firmware, but not that much better.
true OSS openwrt has the fastest updates and security fixes, and it's solid.
Need a OSS system for the cameras, just like OSS firmware such as Openwrt to replace vendor firmwares.
Camera itself does not have enough resource to deal with DDOS or brutal-force attach or updating-with-CVE-quickly if they'are exposed to the public internet _directly_, they should sit behind some firewall. I hope those important cameras, or privacy-concerned cameras, are at least not installed with a public IP, not sure if that is true though, otherwise more exploits will keep coming.