China's Ministry of State Security (MSS) has unveiled a shocking case of foreign agents hacking into a commercial surveillance camera installed near a port in China, using it to monitor the area and spy on sensitive information. The incident serves as a stark reminder of the increasing sophistication of cyberattacks and their potential threats to personal data and national security.

The MSS warned that the internet has become an integral part of daily life and work, but its convenience comes with hidden risks. As participants in cyberspace and defenders of cybersecurity, all citizens must stay alert and vigilant to protect themselves from such threats.

According to the Ministry's investigation, Li, a seaside shop owner, had installed a smart surveillance camera for security purposes. However, he noticed that the camera would automatically rotate toward a nearby port during lunch breaks and at night, sparking his suspicion of a potential cyberattack. He reported the incident to national security authorities via the 12339 hotline, which led to an investigation.

The investigation found that the camera was regularly transmitting data to overseas websites, revealing that it had been compromised by foreign hackers. The device had been using its factory default weak password and lacked software updates, allowing the attackers to seize control. Security officials helped Li strengthen protections by updating the password, enabling automatic software updates, and adjusting the camera's position, effectively preventing further threats.

The MSS also warned that Party and government agencies, universities, and research institutions often maintain publicly accessible email accounts for work-related purposes, making them prime targets for foreign espionage agencies. A common tactic used by these agencies is phishing – malicious emails disguised as routine correspondence designed to lure recipients into clicking harmful links or downloading infected files.

These attacks aim to steal login credentials and sensitive data, and in some cases, can lead to full control of the affected devices. The MSS mentioned a case about a technician surnamed Wang, who works at a classified enterprise and joined a tech discussion group on social media for work-related exchanges.

To avoid missing shared files, Wang logged into his personal account on his work computer and enabled automatic downloads. However, during a routine security check, authorities discovered that his computer had been infected with a Trojan from the group, which was regularly connecting to foreign websites. Investigators found that foreign intelligence agencies often use such platforms to spread malware and steal sensitive information.

The MSS reminded the public that cybersecurity is a shared responsibility. Citizens and organizations should stay vigilant, fulfill their obligations, and take routine protective measures. Any suspected cyberattacks or threats should be promptly reported, said the ministry. By staying informed and taking proactive steps to protect themselves, individuals can contribute to a safer online environment and reduce the risks associated with cyber threats.