The exposed devices were Flock’s Condor cameras, high-end units capable of panning, tilting, and zooming to track individuals and vehicles automatically. Beyond simple observation, the open links granted full access to internal diagnostic tools, the ability to download 30 days of archived footage, and the power to delete files or alter system settings. Benn Jordan, working alongside security researcher Jon “GainSec” Gaines, identified the feeds using Shodan, a search engine for internet-connected hardware.
Unprotected Flock AI cameras exposed live feeds to the public
A security lapse left over 60 AI-powered surveillance cameras accessible to anyone on the web, allowing strangers to watch live footage of neighborhoods, parks, and city streets without a password. Tech researcher Benn Jordan and 404 Media discovered the vulnerability, which exposed both live streams and sensitive administrative control panels.

The surveillance reach proved startlingly intimate. Jordan documented a man leaving his home in New York, a woman jogging on a secluded Georgia trail, and a couple arguing at an Atlanta market. In a practical test of the breach, Jordan and 404 Media’s Jason Koebler physically visited camera sites, verifying that their own movements were being broadcast in real-time to the public stream. While Flock claims the issue was a limited misconfiguration affecting a small number of devices and has since been remedied, the incident highlights the fragility of the expansive surveillance network the company maintains for law enforcement and private businesses.




Comments (0)
No comments yet. Be the first!