No weak links: 4 tips to ensure your video systems are prepared for cyberattacks
Malicious actors are using increasingly sophisticated tactics to hack into video surveillance devices and steal data, disable systems, or hold organisations to ransom. Cyberattacks are on the rise. In Europe, there were 304 cyberattacks in 2020, more than double the number of hacks in 2019. Each data breach can cost millions to put right, and that doesn’t consider the reputation damage and loss of goodwill that results.
Video surveillance systems are an attractive target because of the data they collect which can be exploited for corporate espionage or blackmail. Compromised devices can also act as a foothold for wider cyberattacks on a network. To prevent your video system from being a weak link in your cybersecurity, here are four tips to secure it.
Cybersecurity by Design
Cybersecurity must be a fundamental feature of the video surveillance products and solutions that you use. Look for vendors who can prove that cybersecurity has been considered throughout the design process, not treated as yet another feature in a long list of selling points.
Responsible vendors will have certifications like the UL Cybersecurity Assurance Program (UL CAP) and Secure by Default — Hanwha Techwin has both, and is one of the few manufacturers within the industry that has achieved the UL CAP certification. They will have more stable and secure systems, with regular maintenance and patches to ensure vulnerabilities are proactively mitigated.
The National Defense Authorization Act 2019 (NDAA) is a U.S federal law that prohibits federal agencies and their contractors from using video surveillance equipment from a number of black-listed companies. A manufacturer that is NDAA compliant shows that it can meet the extremely high levels of security and due diligence required by the U.S Government — an indicator that highlights its dedication to securing its products and the data collected and transmitted by them. Whilst it is a US initiative, there are clear signs of European governments hardening their stance and thinking of adopting similar legislation. Hanwha Techwin supports NDAA compliance across its whole product line.
Prompt responses to new threats and vulnerabilities
Even the most robust cybersecurity strategy is not 100% impenetrable. Ensuring that the devices and systems are cyber-secure by design is the first step, the second is making sure that your team and your vendors are able to respond rapidly to any threats. If your vendor has dedicated cybersecurity resources, like Hanwha Techwin’s Security Vulnerability Response Center (S-CERT), they will be able to mitigate threats and vulnerabilities more quickly.
Reduce the human risk
Humans are fallible, 85% of breaches are caused by human error. Where possible, choose products that enforce strong password protection and regular changes to reduce the risk of someone’s password being used to compromise your system.
Training will help every employee understand their role in protecting your organisation from a cyberattack. This should be regular (at least once a year) to cover the latest threats, social engineering tactics, and good practices like not sharing passwords and locking workstations.
Cybersecurity is always at the top of Hanwha Techwin’s priority list. This is why we’ve invested heavily in developing solutions that help our users minimise the risk of their video surveillance systems being hacked.
Find out more about our cybersecurity commitment.