Or more specifically for Axis devices:
When entered into a search engine, this query is designed to return a list of publicly accessible Axis video server login pages or admin consoles. As noted in cybersecurity communities, this is a well-known technique for locating such devices.
Routers have port 80 or 8080 forwarded directly to the camera, making it accessible from anywhere on the internet. inurl indexframe shtml axis video serveradds 1
To prevent exposure via these search queries, Axis and security experts recommend several hardening steps: AXIS OS Vulnerability Scanner Guide - Axis Documentation
The neon sign outside the dive bar flickered with the irregular rhythm of a dying heart. Inside, Elias sat hunched over a laptop that was held together mostly by electrical tape and caffeine. He wasn’t there for the drinks; he was there for the unsecured Wi-Fi. Or more specifically for Axis devices: When entered
Elias slammed the laptop shut. He shoved it into his bag, threw a twenty on the table, and bolted for the door. The cold night air hit his face, but it didn't wash away the chill that had settled in his marrow.
He walked quickly to his car, his heart hammering against his ribs. It was just a hack, he told himself. A prank. Someone had spoofed the feed To prevent exposure via these search queries, Axis
Manufacturers regularly release firmware updates to patch security vulnerabilities. Enable automatic updates if available, or establish a routine schedule to manually flash the latest security patches to the devices. If you want to audit your own deployment, let me know: What of Axis hardware you currently use?
Unsecured IoT Networks: Analyzing the "inurl:indexframe.shtml axis-video" Dork
Google Dorking involves using advanced search operators to find information that is indexed but not intended to be public. Red Sentry