However, legacy systems persist. Factories, prisons, hospitals, and small businesses often run outdated hardware for a decade or more. As long as there is a main.cgi on the public web, this dork remains a valuable tool for security auditors and a persistent risk for the unprepared.

Network cameras that use the "main.cgi" URL are often vulnerable to several types of attacks, including:

Here is a blog post draft addressing the risks of being "indexed" by these searches and how to stay safe.

: Never leave the manufacturer's default username and password. Disable UPnP