Video Surveillance Manufacturers Risk Lawsuits For Botnet Attacks

Author: John Honovich, Published on Oct 24, 2016

The unprecedented scale of internet outages on October 21st from botnet attacks risk triggering lawsuits against video surveillance manufacturers, an event that might spur greater responsibility within the industry.

Large Loss For Companies Impacted

The October 21st attacks hit major Internet sites including brand names like Amazon, PayPal, the NY Times, Netflix, Ebay, etc. These companies generate significant revenue from their websites. Given their size, an outage even for part of a day could have cost them collectively tens or hundreds of millions of dollars in revenue.

More Severe Costs Than Typical Consumer Attacks

This is different from individual consumers who have had their cameras or recorders hacked. In those cases, typically the damage, in direct dollar terms, are minimal or hard to determine, e.g. IP camera trolling. Because of that, lawsuits are uncommon.

Seeking Damages From Those Responsible

With these large companies, many of who are publicly traded, and some having multi-billion dollar valuations, they have both the legal infrastructure and sufficient scale of damages to pursue legal action.

Damages From Hackers Unlikely

Those who ran these hacks / botnet attacks have not been identified. But even if or when they are, it may be hard to win damages since if it is individual hackers, their resources may be minimal and if it is a government, the ability to win damages would be quite hard.

Damages From Video Surveillance Manufacturers

While the video surveillance manufacturers named by the media, including Dahua and Xiongmai, certainly did not conduct the attacks themselves, their equipment was used in the attacks and they could be targeted. The issue, then becomes, whether or not they have liability / sufficient negligence to be found at fault.

We are not lawyers so we cannot tell what the outcome would be or what is right here. However, we do see a real risk of lawsuits being filed given the significant damages suffered and the role of video surveillance devices to conduct these attacks.

Vote

Comments (27): PRO Members only. Login. or Join.

Related Reports

Uniview Weak Local / Strong Remote Password Policy Tested on Mar 14, 2017
With the continuing onslaught of cyber-security breaches (see Dahua backdoor recently discovered, Hikvision defaulted devices getting hacked)...
Genetec Comments on Washington DC MPD Hack on Mar 13, 2017
This January, the Washington DC police video surveillance system was hacked with ransomware, impacting 123 of 187 cameras. Last month, IPVM...
Hikvision New Security Vulnerability on Mar 12, 2017
Hikvision has disclosed a new security vulnerability that affects 200+ of their IP cameras over the past few years. In this note, we examine the...
FLIR Responds to Dahua Backdoor on Mar 10, 2017
FLIR is the first Dahua OEM partner to issue a statement following Dahua's backdoor disclosure: Certain FLIR and Lorex branded products that...
Hikvision Firmware Decrypted on Mar 09, 2017
A developer has decrypted Hikvision's firmware, allowing examination of Hikvision's device source code and contents. In this report, we overview...
Dahua Backdoor Uncovered on Mar 06, 2017
A major cyber security vulnerability across many Dahua products has been discovered by an independent researcher, reported on IPVM, verified by...
Who Is Hacking Hikvision Devices? on Mar 06, 2017
Someone or organization is mass hacking Hikvision devices, actively and systematically running a script / program across the Internet that looks...
Hikvision Defaulted Devices Getting Hacked on Mar 02, 2017
Hikvision devices with default passwords and remote network access enabled (via DDNS, public IPs, etc.) have experienced wide spread hacking over...
Honeywell Sues Alarm.com For Violating Anti-Trust Laws (Settled) on Feb 24, 2017
Is Alarm.com about to dominate the smart home software market? That is what Honeywell alleges in its new lawsuit, first reported by...
Hikvision Barred From US City Housing Authority Bid on Feb 14, 2017
A US city's housing authority has barred Hikvision products from their bid, due to 'increasing security concerns.' In the past few...

Most Recent Industry Reports

Axis Camera Vulnerabilities From Google Researcher Analyzed on Mar 23, 2017
A Google security researcher has reported 6 vulnerabilities for Axis cameras, affecting multiple models and firmware versions. In this report, we...
OpenEye Takes Aim At Exacq on Mar 23, 2017
First Milestone targeted Exacq with a takeover offer, and now OpenEye is gunning for them with an offer to swap out Exacq for their cloud-managed...
Lock Keyways For Access Control Guide on Mar 23, 2017
Lock keyways can be the difference between a lock working or not. Understanding keyways is important for access control. Indeed, a member recently...
Broken Browser Support for Video Surveillance on Mar 22, 2017
Modern web browsers have left the security industry behind. Current Chrome, Firefox, and Microsoft Edge browsers do not support NPAPI plugins,...
ADI Favorability Results on Mar 22, 2017
150 North American integrators provided feedback on 6 distributors, and why they do (or do not do) business with ADI. ADI is clearly a big name in...
1 Million Dahua Devices Exposed To Backdoor on Mar 22, 2017
Statistics show that 1 million Dahua devices are publicly exposed and vulnerable to the Dahua backdoor. Despite this, Dahua has downplayed the...
Hikvision Hires Crisis Communication Writer on Mar 21, 2017
Hikvision has hired a crisis communication writer as the company ramps up its efforts to deal with the 'crisis' it feels it is facing. 'Crisis...
Glass Break Sensor Tutorial on Mar 21, 2017
Burglars often break glass windows to get into a house. Using glass break detectors in conjunction with alarm contacts is a good way to protect the...
Unikey Smart Phone Access Control Platform on Mar 21, 2017
More and more people carry smart phones. Many think this could replace the conventional key or card for access control. However, using a phone...
Hikvision Attacks IPVM on Mar 20, 2017
Hikvision has attacked IPVM repeatedly over the last month, both in the international press and in its dealer communications. Attacks Listed On...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact