HC hearing things with a lot of networking equipment, relying on intelligent building control of the Internet is likely to be a target for hackers, security loophole so that hackers can easily take control.
Smart building or a convenient door for hackers
Although movie fans may be able to understand the dangers of crimes that are precisely scheduled for building technology systems, many executives seem to be unaware of the risks that today's devices connected to the Internet pose to their operations.
Hollywood movies showcase this threat, one example of which was the 2001 casino theft action film "Ocean's Eleven." The film tells of a professional thief and his associates stealing property from a casino in Las Vegas by hijacking surveillance cameras.
The "Eleven Arhats" series of trilogy films showcases criminal attacks that can paralyze the security system, and its credibility is uncomfortably high - these crimes are achieved through a combination of technical expertise and traditional deception. In addition to the "11 Arhats" series of films, the "Mission: Impossible" series of movies, the James Bond series of movies, the DieHard series of movies, etc. have repeatedly repeated buildings. In the electronic ambush drop the play code.
There is growing concern that as buildings in the real world become more connected to the Internet, they are becoming more vulnerable to cybercrime attacks.
The so-called "smart buildings" use Internet connections to control day-to-day operations, including heating, lighting and security. Locks, revolving doors and surveillance cameras are now controlled by microcomputers, which are as easily attacked by hackers as PCs and smartphones, and Martijn Verbree, managing partner of KPMG's network security business, a management consultancy. Said.
Verbri said: "Commercial buildings are much more vulnerable than many building owners and operators think."
“Adding new networking devices to these buildings is adding new vulnerabilities every day.â€
There is much evidence that criminals now have the ability to exploit vulnerabilities in networked devices in smart buildings.
At the DefCon annual technology conference in Las Vegas two years ago, MIT graduates ZackBanks and Eric Van Albert showed the same In the context of the plot, they can hijack a surveillance camera and make it impossible for security personnel to detect that the device has been taken over.
In early 2016, security researchers at IBM's X-ForceRed Penetration Test Team described how they invaded a customer's building automation system with permission. The system controls the sensors and thermostats in the building.
“By working with system operators and building managers, we have found several worrisome places in the (system) architecture where malicious attackers can not only control a single building system, but also enter the central part of the system operator’s operations. The server, in turn, extends control to other buildings with geographically dispersed locations," IBM researchers wrote.
Part of the vulnerability is in the hands of Internet-connected device makers, said James Wickes, chief executive of Cloudview Technologies' cloudview.
Wicks said that products such as networked surveillance cameras and digital video recorders are often set to open when the customer arrives at the building, and only the default password is set.
Tracking these devices and ensuring device security after device installation can be time consuming, and many companies have overlooked this task, Wicks said.
Similarly, he said that downloading software patches from technology vendors to address vulnerabilities is common in conventional calculator devices, but in terms of networking products, the implementation of such measures is often less positive.
For industry experts, it's no wonder that connected CCTV cameras and video recorders are the main targets of criminals, and criminals use these devices as "slaves" to attack corporate web pages.
In October last year, criminals flooded corporate websites with traffic—including Twitter, the Financial Times, New York Times, and Airbnb—until these sites collapsed (this is called distributed Denial of Service Attack (DDoS). Hackers are likely to take advantage of a network of compromised networked devices -- the "botnets --" to send malicious traffic.
Another difficulty is that the building management equipment was previously operated in a separate closed system controlled by facility managers, but as the equipment is connected to the Internet, the equipment begins to share network connections with IT systems that store important data. Researchers open source community SmartCitiesLab Co-founder and chief technology officer Rahul Tomar said.
Part of the solution is to have facility managers and IT teams build closer relationships, but there are fewer companies doing so now, says Rob Hayes, director of network risk services at Deloitte, a management consulting firm. .
Hayes warned that the proliferation of networked devices with weak protection measures could make the "Eleven Arhats" attacks on buildings - a hybrid attack that combines physical and cyber attacks - into reality.
“A fragile component in building management equipment can easily open the door to corporate data,†Hayes said.
Responsible Editor: Wake up
Ningbo GDoor automatic revolving doors mainly include two-wing Automatic Revolving Door, three-wing automatic revolving door, four-wing automatic revolving door and all glass automatic revolving door. According to the way the automatic revolving doors revolve, it can be divided into two catalogues: two-wing automatic revolving door and three/four-wing automatic revolving door. Two-wing automatic revolving door combines Automatic Sliding Door and automatic revolving door, satisfying various customer demands. Ningbo GDoor automatic revolving door is ideal for hotels, hospitals, conference centers, exhibitions, office building, etc..
Automatic Revolving Door
Automatic Revolving Door,Revolving Door System,Revolving Glass Doors,Revolving Entrance Doors
Ningbo Gdoor System Control Technology Co., Ltd. , http://www.gdoor-cn.com