Dahua's Terrible Cybersecurity, Buys Credibility From PSA And SIA

By: John Honovich, Published on Jun 04, 2018

Dahua has a terrible cybersecurity track record.

But American organizations, like the Security Industry Association (SIA) and the PSA Security Network, are happy to sell them credibility, declaring Dahua a 'cyber responsible partner', thanking Dahua for paying to be their 'gold sponsor':

Dahua deserves embarrassment and criticism for their actions, not thanks. These American organization's desire for money tops their claimed mission of improving cybersecurity.

Let's review Dahua's terrible record.

(1) Dahua Massive Hacks

Dahua's customers and integrators were hit with the industry's worst hack attacks in September 2017 due to Dahua's backdoor(s).

(2) Dahua Hide The Hacks

Dahua refused to give notice warning nor inform their dealers until after IPVM reported on it. Even after they did acknowledge it publicly, they buried it under the Orwellian spin "Dahua USA launches latest cybersecurity initiatives."

(3) Dahua Backdoor

Get Notified of Video Surveillance Breaking News
Get Notified of Video Surveillance Breaking News

In 2017, Dahua had a backdoor across virtually all of their products, which led to (1) and (2) above.

(4) Dahua Refused To Disclose Devices Impacted

Dahua hurt their customers by only ever releasing a short, incomplete list of devices vulnerable to the backdoor, refusing to make clear all the firmware versions and models impacted. As a point of comparison, much maligned Hikvision was able to do this, while Dahua refused.

(5) Dahua Mirai Botnet

Dahua's cybersecurity vulnerabilities also made Dahua devices a key weapon in the 2016 Mirai botnet attacks.

(6) Dahua Claimed To Be A "Victim"

Much like the 2017 hacks, Dahua refused responsibility for Mirai, arguing that they were a 'victim', rather than taking responsibility for their basic cybersecurity errors being the enabler of these attacks.

(7) Dahua Falsely Claims GDPR Certification

Not even 2 weeks ago, Dahua falsely claimed that their products were 'certified to comply with GDPR'. This is clearly impossible as no products can be certified for GDPR. Much like they are paying PSA and SIA for credibility, Dahua found another Western organization to validate them erroneously.

(8) US House Bill Bans Dahua

Not even 2 weeks ago, the US House passed a bill banning US government usage of Dahua among other Chinese companies found to be 'risky technology'.

SIA / PSA - Dahua 'Cyber Responsible Partner'

Not only does Dahua get SIA and PSA to thank them, these organizations are endorsing Dahua as a 'cyber responsible partner' featuring a Dahua salesperson at their cybersecurity forum [link no longer available]:

'Industry Leader'

Indeed, PSA President Bill Bozeman referred to Dahua as an 'industry leader' who, despite Dahua's terrible track record, was allowing Dahua to speak about 'what it means to be a responsible cyber partner' in their sponsor announcement:

Ethics aside, Dahua has made a smart move, paying to get labeled as a 'Cyber Responsible Partner' by the Security Industry Association.

Hold Dahua Responsible

A critical problem in cybersecurity are manufacturers who are indifferent, incompetent and unwilling to do the right thing. Dahua has demonstrated all of the above. If we truly want better cybersecurity, we need to hold these companies responsible. We cannot be like the PSA and SIA who happily endorse and thank them for money.

4 reports cite this report:

Dahua Ban Response: NOT Chinese Government Owned on Aug 08, 2018
Dahua has responded to the US Congress passing a US government ban on Dahua...
Drops Dahua, Fenner Becomes ISS CMO on Jul 09, 2018
Hired to improve Dahua's miserable marketing just last year, Janet Fenner has...
2018 Mid-Year Surveillance Industry Guide on Jun 28, 2018
2018 has been an explosive year for the video surveillance industry, with...
The Dumb Ones: PSA's Bozeman On Cybersecurity on Jun 15, 2018
The smart ones are the hundred people who flew to Denver and spent $500+ on a...
Comments (9) : Members only. Login. or Join.

Related Reports

False: Verkada: "If You Want To Remote View Your Cameras You Need To Punch Holes In Your Firewall" on Jul 31, 2020
Verkada falsely declared to “3,000+ customers”, “300 school districts”, and...
Dahua Taunts Australian Government, Continues To Sell Illegal Fever Cameras on Aug 10, 2020
Dahua is effectively taunting the Australian government by continuing to sell...
Dahua Profits Surge Due To Fever Camera Sales on Aug 25, 2020
While Dahua's overall revenue is down, driven by challenges within China, the...
Axis Compares Fever Camera Sellers to 9/11 on Sep 18, 2020
Axis Communications, the West's largest surveillance camera manufacturer, has...
Dahua, Hikvision, ZKTeco Face Mask Detection Shootout on Jun 19, 2020
Temperature tablets with face mask detection are one of the hottest trends in...
Axis Exports To China Police Criticized By Amnesty International on Sep 21, 2020
Axis Communications and other EU surveillance providers are under fire from...
Dahua Buenos Aires Bus Screening Violates IEC Standards and Dahua's Own Instructions on Jun 30, 2020
Dahua has promoted Buenos Aires bus deployments as "solutions that facilitate...
Integrator Acquisitions 'A Good Market' During COVID-19, Says Greybeards on Jul 28, 2020
Industry broker Ron Davis of the "Greybeards" says that the integrator and...
Verkada Falsely Claims "First Native Cloud-based Access Control and Video Security Solution" on Jun 18, 2020
Verkada's false claims continue, this time to be the first native cloud-based...
Fever Cameras Are Medical Devices, Per The FDA, Dahua, Feevr, Hikvision, InVid Contrary Claims Are False on May 28, 2020
Fever cameras are medical devices, despite what euphemisms various sellers...
Faked Convergint Fever Camera 'Expert' Marketing on Jun 16, 2020
Convergint touts they are "THERMAL CAMERA SOLUTION EXPERTS" while faking...
Anixter Runs Fake Coronavirus Marketing Using Shutterstock Watermarked Images on Jul 24, 2020
Coronavirus faked marketing is regrettably commonplace right now but Anixter...
Dahua USA Admits Thermal Solutions "Qualify As Medical Devices" on Jul 02, 2020
Dahua USA has issued a press release admitting a controversial point in the...
Faulty Hikvision Cali Colombia Fever Camera Implementation on Jul 20, 2020
The mayor of one of Colombia's largest cities has promoted a faulty Hikvision...
Dartmouth College Deploys K3 Temperature Screening on Sep 29, 2020
While Dartmouth College has a $6+ billion endowment, the College has bought...

Recent Reports

Temperature Tablet Shootout - Dahua, Hikvision, ZKTeco, TVT + 5 More on Sep 30, 2020
Temperature tablets, aka terminal or stations, have emerged as a 'low-cost...
New Products Show Fall 2020 Tomorrow Bosch, FLIR, Hanwha, Tyco, Avigilon More! on Sep 30, 2020
IPVM's sixth online show concludes tomorrow with our special temperature...
ButterflyMX Raises $35 Million on Sep 30, 2020
Startup ButterflyMX has raised $35 million for its smartphone based intercom...
Worst Access Control Manufacturers 2020 on Sep 30, 2020
200+ Integrators told IPVM "In the past year, what access control...
Access Control Levels and Schedules Tutorial on Sep 29, 2020
Configuring access levels and setting up schedules is central to maintaining...
Avigilon / Motorola VS Virtual ISC West on Sep 29, 2020
ISC West has historically been so dominant that no player would think of...
Dartmouth College Deploys K3 Temperature Screening on Sep 29, 2020
While Dartmouth College has a $6+ billion endowment, the College has bought...
Hanwha AI Object Detection Tested on Sep 28, 2020
Hanwha has added detection and classification of people, cars, clothing...
Favorite Access Control Manufacturers 2020 on Sep 28, 2020
200+ Integrators told IPVM "What is your favorite access control management...
OnTech Smart Services Partners With Google and Amazon To Compete With Integrators on Sep 25, 2020
A pain point for many homeowners to use consumer security and surveillance is...
The Future of Metalens For Video Surveillance Cameras - MIT / UMass / Immervision on Sep 25, 2020
Panoramic cameras using 'fisheye' lens have become commonplace in video...
Hikvision Sues Over Brazilian Airport Loss on Sep 24, 2020
Hikvision was excluded from a Brazilian airport project because it is owned...
China General Chamber of Commerce Calls Out US Politics on Sep 24, 2020
While US-China relations are at an all-time low, optimism about relations...
Verkada Disruptive Embedded Live Help on Sep 24, 2020
Call up your integrator? Have someone come by the next day? Verkada is...
IP Networking Course Fall 2020 - Last Chance - Register Now on Sep 23, 2020
Today is the last chance to register for the only IP networking course...