The gap between perception and reality in the cybersecurity of video systems

Hanwha Vision Europe ha realizado una investigación sobre la ciberseguridad de los sistemas de videovigilancia, en la que nueve de cada diez responsables de seguridad e informática en Reino Unido, France, Germany, España e Italia creen que están bien protegidos.

Los sistemas de videovigilancia se han convertido en un recurso clave en múltiples industrias, en la que los responsables de seguridad e informática confían en la resistencia de sus sistemas frente a amenazas cibernéticas.

La confianza es alta en empresas de distintos tamaños y sectores. The investigación sobre la ciberseguridad de los sistemas de videovigilancia realizada por Hanwha Vision en dichos países europeos, revela que en Italia alcanza el 97%, mientras que en España, aunque sigue siendo elevada, baja al 83%. En sectores como el financiero, la confianza llega casi al 99%, si bien en los centros de datos desciende hasta un 80%.

However, la investigación revela que esta seguridad percibida no siempre se traduce en buenas prácticas. Aunque el 92% de los responsables de TI y seguridad creen que sus sistemas están protegidos contra el cibercrimen, only 23% aplica medidas básicas de seguridad en vídeo.

Un motivo de preocupación

El estudio de Hanwha Vision también expone una preocupante falta de conocimiento sobre normativas clave en ciberseguridad, like the Directiva NIS2 (Seguridad de Redes y Sistemas de Información, segunda edición), en vigor desde octubre de 2024, and the Ley de Resiliencia Cibernética (CRA).

Besides, muchas organizaciones no están aplicando buenas prácticas alineadas con estas regulaciones, which compromises their ability to respond to cyberattacks in their security systems.

Less than half (47%) of respondents are familiar with NIS2 and only 23% have heard of the CRA. Although large companies show greater awareness (45% on average), it is still a low level considering the increase in cyberattacks in 2024, which reached a record of 1.876 weekly attacks in the third quarter of the year.

Basic but essential measures, such as changing default passwords or updating firmware, are often overlooked, leaving systems vulnerable to easily preventable attacks.

Creating a cybersecurity culture

Beyond implementing technical measures, it is essential to promote a cybersecurity culture in companies. Key actions include ensuring physical access to network devices, implementing 802.1x certificate-based authentication and creating user accounts with the least possible privileges.

Nevertheless, the study reveals that many organizations are not actively promoting these best practices within their teams, leaving them exposed.

Small businesses are the most vulnerable: only 17% apply these measures, in front of 41% of large companies. Some alarming data, since many companies fail to recover from the financial impact of a cyberattack.

The good news is that these weaknesses can be quickly corrected with concrete actions, such as conducting an audit to identify weaknesses in the system; applying cybersecurity best practices, how to restrict access and physically protect network devices.

It is also necessary to schedule periodic security assessments and stay updated on new threats and regulations; train the team with regular training sessions and work with trusted manufacturers and suppliers who prioritize cybersecurity in their video systems.

Taking key measures, companies can strengthen their video surveillance systems, better protect their data and improve their resilience against cyber threats. Only in this way will the gap between the security managers' trust and the reality of their current practices be closed, emphasize Hanwha Vision.