Is your CCTV System Secure from Cyber Attack?
The failure of manufacturers to automate firmware updates also leaves DVR systems vulnerable, with little oversight or control over access and data exfiltration. In the case of an attack, a DVR acts as a gateway to a company’s wider network, giving an attacker the means for undetectable corruption, or the extraction of huge amounts of data. Unfortunately, most cloud-based video solutions are just as vulnerable as traditional DVR systems. They often use the same IP connection and ‘port forwarding’ techniques as an old-fashioned DVR, leaving data equally insecure.
A survey conducted by Cloudview of 24 cloud-video providers exposed many common security errors, that left client data vulnerable. These vulnerabilities included a lack of encryption, poor cookie security, insecure user and credential management and the failure to use effective security protocols. The majority of both DVR and cloud-based systems also failed to offer effective access and storage controls. Not only does this pose a risk to people and property, it also leaves companies on the wrong side of the law.
The only provider currently offering the security features necessary to safeguard sensitive visual data is Cloudview. Using a secure, single-direction connection from the network adapter to the cloud, Cloudview is protected from external interference. Once off the premises, the data is secured by end-to-end encryption and digital signatures. Cloudview’s flexible log-in and storage controls maintain access security, whilst enabling operators to adhere to increasingly strict data protection regulations.