This is non-negotiable. If your camera has a default username/password (like admin/admin), an attacker doesn't need a dork; they can simply guess it. Use a strong, unique password.
: This is a standard keyword search. Google looks for the word "cameras" either within the URL, the page title, or the body text of the webpage. inurl viewshtml cameras
Even accessing an unsecured camera is legally gray. The US Computer Fraud and Abuse Act (CFAA) has been interpreted by courts (e.g., Van Buren v. United States ) to mean that if the camera is "unintentionally public," accessing it might be legal, but exceeding authorized access (e.g., clicking PTZ controls) is a felony. In Europe, GDPR likely makes any viewing of identifiable people (even accidentally) a violation. This is non-negotiable