Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • NEWS
    • Security Newswire
    • Technologies & Solutions
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • Logical Security
    • Security & Business Resilience
    • Profiles in Excellence
  • PHYSICAL
    • Access Management
    • Fire & Life Safety
    • Identity Management
    • Physical Security
    • Video Surveillance
    • Case Studies (Physical)
  • CYBER
    • Cybersecurity News
    • More
  • BLOG
  • COLUMNS
    • Cyber Tactics
    • Leadership & Management
    • Security Talk
    • Career Intelligence
    • Leader to Leader
    • Cybersecurity Education & Training
  • EXCLUSIVES
    • Annual Guarding Report
    • Most Influential People in Security
    • The Security Benchmark Report
    • The Security Leadership Issue
    • Top Guard and Security Officer Companies
    • Top Cybersecurity Leaders
    • Women in Security
  • SECTORS
    • Arenas / Stadiums / Leagues / Entertainment
    • Banking/Finance/Insurance
    • Construction, Real Estate, Property Management
    • Education: K-12
    • Education: University
    • Government: Federal, State and Local
    • Hospitality & Casinos
    • Hospitals & Medical Centers
    • Infrastructure:Electric,Gas & Water
    • Ports: Sea, Land, & Air
    • Retail/Restaurants/Convenience
    • Transportation/Logistics/Supply Chain/Distribution/ Warehousing
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MEDIA
    • Videos
      • Cybersecurity & Geopolitical Discussion
      • Ask Me Anything (AMA) Series
    • Podcasts
    • Polls
    • Photo Galleries
  • MORE
    • Call for Entries
    • Classifieds & Job Listings
    • Continuing Education
    • Newsletter
    • Sponsor Insights
    • Store
    • White Papers
  • EMAG
    • eMagazine
    • This Month's Content
    • Advertise
  • SIGN UP!
Video SurveillanceCybersecurity News

Meta Security: Securing Your Security System with Automation

By Tom Galvin
camera-enews
January 17, 2017

Research firm IHS Markit predicts that by the end of 2016, networked surveillance cameras will account for one-third of the installed base of 62 million cameras in North America.  In fact, almost all new security devices are IP-based: access control panels, access control readers, door locks and fire detectors. Whether you have a handful or hundreds of these devices in your network, they are vulnerable to a growing number of security threats. 

The Wall Street Journal and other media outlets recently reported on a massive denial-of-service attack launched by network cameras. According to the Journal, “Attackers used an army of hijacked security cameras and video recorders to launch several massive Internet attacks…” on French web host provider OVH and U.S. security researcher Brian Krebs. These and similar breaches are becoming more common and have been a wake-up call to the physical security industry.

Do not take for granted that your internal staff or your vendors are fully hardening your video surveillance system against security breaches. Here are the security vulnerabilities to be aware of and automation capabilities that can help.

Emerging Vulnerabilities

Many IP-based security systems have inherent vulnerabilities that can be exploited to perform cyber attacks due to the following:  

  • Physical Exposure: By necessity, many security devices are installed outside or near doors on the network perimeter, leaving physical network ports accessible and vulnerable to a rogue laptop or other devices.  There have been instances where rogue laptops have been used as intermediaries to siphon a lot of sensitive data from an organization.
  • Lack of Awareness: Fully hardening networked cameras against a security breach often requires a detailed understanding of network operations and a labor-intensive process. Indeed, the AXIS Communications Hardening Guide, an industry standard, has 24 pages of best practices for organizations large and small.

Unfortunately, many installers and physical security pros are not familiar with cybersecurity measures and do not have the expertise to address these issues. In addition, they rarely contemplate cybersecurity within the camera installation design. Even initially well-protected and isolated “camera-only” networks can suffer security weaknesses brought about by unintended connections that bridge to the main corporate network.

  • Working in Silos: Physical security and IT departments need to work in coordination to follow the organization’s network security policies and clearly define responsibility for deploying updated camera firmware issued by manufacturers to address vulnerabilities.
  • Device Vulnerabilities: While many security device manufacturers are better protecting their products, many network cameras and access control devices are not sufficiently hardened to protect against potential attack from emerging cyber threats.  

Reducing Risk with Automation

Physical security professionals should not have to be Certified Cisco Network Associates (CCNA) to install and maintain security systems. Automated cyber protection mechanisms can reduce threats by implementing best practices for hardening IP cameras and other security devices. Automation reduces the workload and knowledge required to properly install these systems and maintains adequate protections as threats evolve.

Security managers need visibility into and control over the entire physical security ecosystem. Monitoring to the server or switch is insufficient. Visibility is needed down to the source cameras, with alerts to the security manager when cameras are damaged or settings are incorrect.

On the front end, automation tools can configure best practices such as enabling a protected VLAN for the security system, changing a camera’s default login credentials and binding the camera’s MAC-ID to switch ports to ensure that other rogue devices are not plugged into exposed Ethernet ports on the perimeter of the network.

Once the system is installed, automated cyber protections can also monitor network flows, detect abnormalities and respond immediately to suspected attacks. For example, automation tools can alert and intervene when the following threats are detected:

  • Cable changes: disconnecting or changing cable lengths
  • Connecting a new device or disconnecting an existing one
  • Data flow/ direction changes
  • Abnormal bandwidth consumption
  • Abnormal power consumption
  • Camera image quality changes
  • Camera connecting directly to external IP addresses

When abnormal behavior is detected, automation tools can generate alerts and take proactive interventions such as disabling a device’s data or power port.  

The last thing you want is to discover that your video surveillance system was not working when a potentially devastating security incident occurred. Ensure that your physical security employees and vendors – as well as your IT staff – are fully educated and prepared to secure your video surveillance system. Look for automation to help fill in the gaps and put your security firmly where it belongs: under your full control.

KEYWORDS: data breach Internet of Things (IoT) IP cameras security technology surveillance cybersecurity

Share This Story

Looking for a reprint of this article?
From high-res PDFs to custom plaques, order your copy today!

Tom Galvin is the founder and CEO at Razberi Technologies. As an industry expert in the development of video management software used for the electronic security and surveillance industry, Galvin has more than 25 years of experience and is the inventor of five patents on voice over IP systems, including the Razberi™ ServerSwitch™. Previously, Galvin served as the executive leader of product management and product development at GVI Security. Prior to GVI, he was the president and founder of NetVideo Consulting, where he provided strategic product consulting to manufacturers and software vendors for video surveillance products. He was also a product leader responsible for product management and development at General Electric Security and served as vice president of product development at Verint. Galvin started his telecommunications career at MCI Telecom, which is now Verizon, where he was responsible for developing network-based intelligent services. Galvin has a Bachelor of Science in Electrical Engineering from Iowa State University and a MBA from the University of Iowa.

Recommended Content

JOIN TODAY
To unlock your recommendations.

Already have an account? Sign In

  • Security's Top Cybersecurity Leaders 2024

    Security's Top Cybersecurity Leaders 2024

    Security magazine's Top Cybersecurity Leaders 2024 award...
    Top Cybersecurity Leaders
    By: Security Staff
  • cyber brain

    The intersection of cybersecurity and artificial intelligence

    Artificial intelligence (AI) is a valuable cybersecurity...
    Logical Security
    By: Pam Nigro
  • artificial intelligence AI graphic

    Assessing the pros and cons of AI for cybersecurity

    Artificial intelligence (AI) has significant implications...
    New Security Technology
    By: Charles Denyer
Manage My Account
  • Security eNewsletter & Other eNews Alerts
  • eMagazine Subscriptions
  • Manage My Preferences
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Sponsored Content

Sponsored Content is a special paid section where industry companies provide high quality, objective, non-commercial content around topics of interest to the Security audience. All Sponsored Content is supplied by the advertising company and any opinions expressed in this article are those of the author and not necessarily reflect the views of Security or its parent company, BNP Media. Interested in participating in our Sponsored Content section? Contact your local rep!

close
  • Crisis Response Team
    Sponsored byEverbridge

    Automate or Fall Behind – Crisis Response at the Speed of Risk

  • Perimeter security
    Sponsored byAMAROK

    Why Property Security is the New Competitive Advantage

  • Duty of Care
    Sponsored byAMAROK

    Integrating Technology and Physical Security to Advance Duty of Care

Popular Stories

Coding

AI Emerges as the Top Concern for Security Leaders

Half open laptop

“Luigi Was Right”: A Look at the Website Sharing Data on More Than 1,000 Executives

Shopping mall

Victoria’s Secret Security Incident Shuts Down Website

Laptop with coding on ground

Stepping Into the Light: Why CISOs Are Replacing Black-Box Security With Open-Source XDR

Gift cards and credit cards

Why Are Cyberattacks Targeting Retail? Experts Share Their Thoughts

2025 Security Benchmark banner

Events

June 24, 2025

Inside a Modern GSOC: How Anthropic Benchmarks Risk Detection Tools for Speed and Accuracy

For today's security teams, making informed decisions in the first moments of a crisis is critical.

July 17, 2025

Tech in the Jungle: Leveraging Surveillance, Access Control, and Technology in Unique Environments

From animal habitats to bustling crowds of visitors, a zoo is a one-of-a-kind environment for deploying modern security technologies.

View All Submit An Event

Products

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

See More Products

Related Articles

  • 10 Questions for Your Security Consultant

    See More
  • Bringing Interoperability to Network Video

    See More
  • guard-enews

    How Security System Automation Can Help Tackle Operator Fatigue

    See More

Related Products

See More Products
  • Photonic-Sensing.gif

    Photonic Sensing: Principles and Applications for Safety and Security Monitoring

  • 9780367667887.jpg

    Surveillance, Privacy and Security

  • 9780367030407.jpg

    National Security, Personal Privacy and the Law

See More Products
×

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

SIGN UP TODAY!
  • RESOURCES
    • Advertise
    • Contact Us
    • Store
    • Want More
  • SIGN UP TODAY
    • Create Account
    • eMagazine
    • eNewsletter
    • Customer Service
    • Manage Preferences
  • SERVICES
    • Marketing Services
    • Reprints
    • Market Research
    • List Rental
    • Survey/Respondent Access
  • STAY CONNECTED
    • LinkedIn
    • Facebook
    • YouTube
    • X (Twitter)
  • PRIVACY
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY

Copyright ©2025. All Rights Reserved BNP Media.

Design, CMS, Hosting & Web Development :: ePublishing