Video security systems have become a critical asset across industries, with leaders confident in their systems’ resilience against cyber threats. Research from Hanwha Vision Europe suggests that more than nine in ten security and IT managers in the UK, France, Germany, Spain and Italy believe their video systems are well-protected.
Overall, confidence is high across organisation sizes, countries and sectors. In Italy, confidence reaches 97per cent, while Spain, albeit still high, has a lower confidence level at 83per cent. Sectors such as finance boast a nearly universal confidence level of 99per cent, with data centres at a more modest 80per cent. Given the lack of adequate security practices implemented by organisations, finds the research, this confidence may be misplaced. While 92per cent of IT and security managers believe their video systems are highly secured against cybercrime, just 23per cent implement basic video security measures.
Cause for concern
Indeed, the research found that respondents also display a lack of awareness of relevant cybersecurity legislation such as the Network and Information Security Directive 2nd edition (NIS2), which came into effect in October 2024, and the Cyber Resilience Act (CRA). Best practices that align and comply with these regulations and improve cyber-resilience overall are also not being regularly implemented, finds the research. Fewer than half (47per cent) of respondents are familiar with NIS2 and only 23per cent are aware of the CRA. Larger organisations do show slightly higher awareness at 45per cent on average, but this is still low given the rise in cyber-attacks on businesses in 2024 – hitting an annual high of 1,876 per week in Q3 of 2024.
Simple yet essential measures including changing default passwords and updating firmware — a baseline for cybersecurity — are overlooked or forgotten by many, leaving systems vulnerable to more preventable attacks.
Fostering a resilient culture alongside implementing fundamental steps such as securing physical access to network devices, implementing 802.1x certificate-based access, and creating least-privilege user accounts, are paramount to ensuring cyber secure video surveillance. Security and operations teams must understand their roles in protecting video systems against attack. However, the research indicates that many companies aren’t widely promoting best practices across their workforces leading to vulnerabilities.
Small businesses are particularly vulnerable, with only 17per cent implementing these security measures, compared to four in 10 (41per cent) larger enterprises. This is particularly concerning given that many businesses do not survive the financial impact of a cyber-attack.
Keep secure
The good news is that the weaknesses uncovered can be quickly rectified with some immediate actions, the manufacturer says.
1. Audit your system to identify your weak spots.
2. Implement cybersecurity best practices such as creating user-level accounts with the least privileges required and securing physical access to network devices. It can be worth consulting with a video cybersecurity expert to assess your specific video surveillance ecosystem and practices to implement.
3. Schedule regular security assessments and remain updated with the evolving threat and regulatory landscape.
4. Disseminate information across your workforce with regular knowledge refreshers.
5. Work with reputable manufacturers and installers who prioritise cybersecurity in their video systems.
By prioritising a few critical actions, organisations can strengthen their video security systems, better protect sensitive data, and improve overall cyber resilience. Finally, bridging the gap between the confidence that security and IT leaders feel today and the reality of their current practices.
