Hikvision USA Head of Cybersecurity Exits

Author: Brian Karas, Published on Jul 18, 2017

Hikvision USA's Head of Cybersecurity has exited the company.

In this note, we review the move, share Hikvision's feedback and examine the company's efforts to improve their cybersecurity following numerous vulnerabilities and problems (e.g., 1, 2, 3, 4, 5) in the past few years.

********* ***'* **** ** ************* *** ****** *** *******.

** **** ****, ** ****** *** ****, ***** *********'* ******** and ******* *** *******'* ******* ** ******* ***** ************* ********* numerous *************** *** ******** (*.*.,*,*,*,*,*) ** *** **** *** *****.

[***************]

Exit ********

**** ********** **** ** ************* *** ********* *** *** **** * months, ***** ** ******** **** *** ****** ** *** ****.

*******'* ********** ******** ******** ***** ** * *********/***********-******** ******** ******* at ******* *********, ** **** ** ******* * ***** ********** company ************ ** ***** ******** ********** *** **** ******** *** security ***************.

Hikvision ********

********* *********:

********* **** *** ******* ** ******* *** *********’ **********. *** position ** ***** ********** *** ********** ** ***********/******* ********** **** versus ** *********** ****.

*** ******* ******** ** ******* ** ********** ********* ****** *** clarification ** **** ********* *** ** ***** ** ***** ** enhancing *** ************* ** ***** ********.

Hikvision ************* ****** **********

***** **** *** ********* ********* ********* ** ********** ** ************** ********** *** ********** ****** ** **** **** ******** *****, ***** ********* **** higher *** *** **** ** * "*****-**" ********* ****** **. providing ********* ********* *** ******** ********. ** *** ******* ***** some **** *** ********* ** **** **** ****, ***** ****** a *** ** ***** ************* ********* *** ********** ** *** interim.

*** *** ******* ***** ** ******** ************* ** *** ******/******, (1) "********** **** ********* ********** ** ******* ********* *********, **** as ******** ***** *****, ******** ** *************, ***. ********* *** security ******** ** ********* ********" *** (*) "******* ** ***** of *********** ** *********** ******** ********** ** **********".

Series ** ************* ******

********* *** ***** * ****** ** ************* **********, ****** **** several *****. ****** **** *******:

*** ******* ******* ***** ******* ** ******* ***** ******* ************* issues, ****** **** ** *** **** * ******* ** ****** such ****** (*.*.:********* ******* ******** ** ******, ****** **** **** ***,********* ******* ************** *** ****** ********* *******). **** *** **** ** **** *********** *** * ****** in *** **** ********* ** ****** *** ** *** ******* does *** **** ************** *** ***** ***************.

Heavy ********* ** *************

****** ********* ********* *** ****** **** ***** ** ***** ******* on *********'* ************* *******, ********** ***** ******* ** **** ******, but ****** ****** ******** ***********, ** ***** ** *** ** Hikvision's **** ****** ********* ******:

**** *** ***** ********* *** **** ******* ** ***** ************* efforts *** ************ *** **** ****** **** **** ** ** when ********.

Hikvision *** ****** ******* **** *************

* ***** ****** *** ********* ***, *** ****** *** **** to **** *******'* ****, ** ******* **** *** **** **** Hikvision *&* ** ********* ***** ** ***** ** ** *****. Sources ***** ** ********* *** **** ************ **** *** ***** engineering ******, **** ** ********** ************* ******, ** ******* ** the ********* ** *****, *** **** *** ***** ****** ** not ****** ********* ** ***** *** *********** **** *** ******* sales *******.

Comments (7)

* *** ********** *** ********** ** ******* ** **** **** marketing ** **** * ****. *'* **** *** ***** ** find * *****-******* ****** **** ** ** ****** ** **** areas **** ** ********* *** ***** ********. **** **** **** a **** **** **** **** ****** ***** ***** ******** ** be *** **** ** *** ********.

****** **** ***** **** **** ******** **** ****** ** (*************)? The ************** ********** ** ***** ***** ****** *** *********.

* **** ***** ********* *** ************ ** **** **** **********. My ******* ******* ****** ********** ** **** *** **** **********. Although ** ***** *** ******** ******** ************, *'* **** * lack ** ******* ****** *** *** **** **** ********* **** things *********. ** * ************ ** *** ******** *** **** 15 ***** * ***'* ******* *** *** ** ***** **** been ********** ** **** ***********. **** **** ** *** **** individual **** ***** **** **** *** ** ** ******* ** he ***** *** *** **** ***********.

***** ******* ***** ** **** ** ******* *****

** ******* ***** ***** * ********** *********

********* ***** ******** *** ****** ** ******* *****

** *** ***** ******** ** ******* **** *** ** ***** a **** ********* *******

** ****** ** ** *** ** ********** ****** ******* *** nvr *** ** ****** ******** ** ** ******* ***** ******* already ** ****

*** ** **** **** ********* *** ***

*** *** ****** *** ***** **** *** ***** ******** (*********, HiSilicon, ***) *** **** ******** ******** ******** ********** ****** **** can ****** ******* ***** **** **** ****** *********** ***.

********** *****'* **** **** ***** ***** ** ******** ********.

**** ****, ** ***** ** *********** ** *** ******** ******* cared ***** ****** ***-*** **********. *** ******* ****'* *** ******** factor... **** *** *** $* ***** ******** *** *** ************ AES ******* ***** ****** ***** **** *** ****. *** ********* is *** ******* *** / *** ******* **** ****'** ********** to.

*** ******** ******* ******* **** **** ** ***** **** ** have ********* ****** ******* *********** *** *********** ******* ***** ***** of *******.

** ******* *** *********** *** *******... *** ** **** ***, the * ** *** ****** *** ********. (*.*. ***** ** none).

*** ******* ****** ****** ****** **** ******************** ** **** **** *** ******** ****** ** ******* ******** device(s). ** *******'* ****** **** * ********* ****** *** **** back ***** **** *** ***********. ** ************ ************* ****** ** permitted ** ** **** **** ******. ******.

***** ** **** **** ********* ** *****, **'** ******** ** have ******* ***** ******* **** ** **********, **** ** *** ends ** ********...

******* ****** **** ** ************* ********* *** *********, **** **** written ** ******* **** *** ****** ******* ** ***** ***** of ********.

*** ***** ** *** ***** ***** **** **** ** ****** horrific, *** **'* ******* *****. *********** *** ***** ** *** fact **** ***** ******* *** ************ ******** **** ******** *** dangerous ** ******** **** ** *** *******.

**** *** ************* ******* ******* ******** ******* *******. ****'** **** twiddling ***** ****** *** *** **** **** ***** ******* ******* out **** ****** *.*** **** *******. **** ** ******* *** running ** **-**% *** *********** (****** ********* *** ******* ** the ****** ** ****). ** *** **** ** *********, **** quad **** ********** **** ****** *** ****... ********** ****** ** in ************, *** **** ** ***** ******** ********/******** ********* **** serve ** ******** *** ****** ******* ** ***** *******.

*** **** ******** *** ***** ************ ***** ******* ** ***********. Good ****** ****** ** **** **** **********.

****** -

********* *** ***** * *** ******** ** ***** ********,***** *****.

*** ******** ******* *****: "***********: ******** *********, ******* ********, ******* ********, ********* *********, **** Security", ***** **** ******-*****,***** ***** *** * ****** ********* ********** ******* ** *** role.

*** ******** **** *** ** ***, *** ** **** *** list *** ******** ******** ******** ********** ************, ***** ***** **** his ********** **** ********* * *** **** *********** **** ******* coming **** **** ********.

** **** **** * ******* ** ********* *** ** ********* with *** *** * ****** ****.

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports

Long Time Industry Exec Leads New Security Franchise Offering on Oct 12, 2017
John Nemerofsky previously built and sold a $150 million dollar integration business, and then was VP of Niscayah from its spinout of Securitas,...
Dahua Trying, Struggling To Respond To Hacking Attacks on Oct 04, 2017
Now, 2 weeks since large-scale hacking attacks commenced against Dahua vulnerable devices, we analyze Dahua's response. On the positive side,...
Hikvision USA Misleads Dealers On Backdoor on Oct 03, 2017
Hikvision USA emailed their dealers overnight with their 5th cyber security 'special bulletin' of the year. Misleading Unfortunately, they...
FLIR Thermal Camera Multiple Vulnerabilities, Patch Released on Oct 03, 2017
Multiple cyber security vulnerabilities exist in FLIR thermal cameras, which have not been fixed, despite being reported months ago. In this note,...
Vivotek Delta Acquisition Concludes on Oct 02, 2017
On August 8, 2017, Delta Group made an offer to acquire Vivotek. Now, the acquisition process has concluded. Inside this note, we examine the...
Knightscope Financials Reveal Huge Increase In Expenses And Incorrect Accounting on Oct 02, 2017
Knightscope's H1 2017 financials are out, in the midst of their ongoing crowd funding approaching $17 million. In this note, we analyze...
ASIS Show 2017 Final Report on Sep 27, 2017
ASIS is in Dallas for 2017 and this is our final show report (compare to our 2016 ASIS show report). When walking in, one is greeted with Dahua's...
Hackers Globally Attacking Dahua Recorders on Sep 25, 2017
Dahua recorders are being hacked and vandalized around the world, as confirmed by dozens of reports to IPVM since the attacks surged 5 days...
Avigilon Touting 'Made In America' on Sep 18, 2017
Canadian manufacturer Avigilon, who completed a US manufacturing facility in 2015, is now running a marketing campaign touting 'Made In America',...
September IP Networking Course on Sep 14, 2017
LAST Chance - Registration is ending. Register now. This is the only networking course designed specifically for video surveillance professionals...

Most Recent Industry Reports

Dahua Removes Auto Rebooting on Oct 17, 2017
For years, Dahua has automatically programmed its IP cameras to reboot weekly, a highly atypical and questionable practice. Following IPVM...
Deep Learning Tutorial For Video Surveillance on Oct 17, 2017
Deep learning is a growing buzzword within physical security and video surveillance. But what is 'deep learning'? In this tutorial, we explain...
Multipoint Lock Access Control Tutorial on Oct 17, 2017
Doors are notoriously weak at stopping entry, and money can be misspent on wrong locks that leave doors quite vulnerable. While closed and locked...
Buy From B&H, Ship Direct From ADI on Oct 16, 2017
B&H, one of the largest online sellers of video surveillance equipment to end users, regularly purchases their video surveillance equipment...
Competing Against Siemens on Oct 16, 2017
Siemens entered the integration business with 15,000+ customers, through their acquisition of Security Technologies Group in 2001. Since that time,...
Geovision GV-EDR2100 Tested Vs Hikvision on Oct 16, 2017
A number of ADI's top selling IP cameras are, at least surprisingly to us, from Geovision. We recently bought and tested the Geovision EDR2100...
Top Problems Searching Surveillance Video (Statistics) on Oct 13, 2017
When crimes, accidents or incidents happen, the video surveillance system is a key component in finding out and proving what actually...
Exacq M Series Low Cost NVR Tested on Oct 12, 2017
With recent cyber security issues hitting NVRs and cameras from low cost leaders Dahua and Hikvision, users are increasingly seeking alternatives...
Long Time Industry Exec Leads New Security Franchise Offering on Oct 12, 2017
John Nemerofsky previously built and sold a $150 million dollar integration business, and then was VP of Niscayah from its spinout of Securitas,...
PoE Powered Access Control Tutorial on Oct 12, 2017
Powering access control with Power over Ethernet, like for IP cameras, has become increasingly common.  However, the demands for access power are...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact