Networked devices increase cyber risks for building systems

Issue 5 2022 News & Events

Companies face an increasing but under-recognised threat from cyberattacks on building systems, and facilities managers need to act now with IT professionals to address the issue, independent research and advisory firm Verdantix is warning.

It highlights how a sharp rise in the number of connected devices across building systems mean that the operational technology (OT) used to run facilities creates a growing risk of cyberattack. Connected OT networks are converging with their IT counterparts, blurring traditional lines of responsibility for cybersecurity, just as ageing building systems require replacement and the number of attacks rises.

Without sufficient security controls, Verdantix warns that these systems are introducing significant new risks and more entry points for cybercriminals to exploit. The past five years have seen a massive explosion of Internet of Things (IoT) sensors and smart devices deployed, with firms frequently selecting these smart devices based on cost and functionality, resulting in facilities having many devices with poor built-in cybersecurity controls.

Verdantix’s ‘Best Practices: Enhancing Your Smart Building Cyber Security Programme’ found that firms are not aware of the full extent of their risk exposure from their OT, as they often do not keep registers of connected devices, or the level of cybersecurity protection provided.

Compiled after interviews with experts from the cybersecurity, IT and building technology sectors, the report shows how companies can adapt. Its publication comes as more connected devices via the IoT transform the landscape, but just 32% of firms evaluate IoT security risks as part of the onboarding process for third parties, and just 54% run penetration tests on their IoT devices.

Rodolphe D’Arjuzon, global head of research at Verdantix, said: “The first step for rebooting a smart building cybersecurity strategy is defining clear responsibilities and embedding cyber management into facilities operations across procurement, technology management and staff training.

“Facilities managers should not develop a siloed cyber programme on their own, but rather partner with their IT and security peers to integrate cybersecurity into different building management processes.”


Credit(s)




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Highest increase in global cyberattacks in two years
Information Security News & Events
Check Point Global Research released new data on Q2 2024 cyber-attack trends, noting a 30% global increase in Q2 2024, with Africa experiencing the highest average weekly per organisation.

Read more...
From the editor's desk: We’ve only just begun
Technews Publishing News & Events
The surveillance market has expanded far beyond the analogue days of just recording and/or monitoring screens. The capabilities of surveillance technology today extend to black screen monitoring with ...

Read more...
The future of the surveillance channel
Duxbury Networking Technews Publishing Elvey Security Technologies SMART Security Solutions Surveillance
The video surveillance market has evolved from camera-based specifications to integrated solutions that solve customers’ problems. Moreover, the growth of AI and cloud has changed the channel even more, with more to come.

Read more...
AI means proactive surveillance
DeepAlert Technews Publishing SMART Security Solutions AI & Data Analytics Surveillance
SMART Security Solutionsasked DeepAlert for some insight into how AI is transforming video surveillance, even to the extent of it being taught to protect the privacy of those in the cameras’ view.

Read more...
The state of the VMS market
Arteco Global Africa Milestone Systems Cathexis Technologies Technews Publishing Surveillance
SMART Security Solutions asked three platform vendors in South Africa, one that is developed and maintained in the country with an international market, for their views on the state of the VMS market and where it is headed.

Read more...
SAFPS issues SAPS impersonation scam warning
News & Events Security Services & Risk Management
The Southern African Fraud Prevention Service (SAFPS) is warning the public against a scam in which scammers pose as members of the South African Police Service (SAPS) and trick and intimidate individuals into handing over personal and financial information.

Read more...
Strong industry ties set Securex South Africa apart
News & Events Training & Education
Securex South Africa, co-located with A-OSH EXPO, Facilities Management Expo, and Firexpo, is a meeting place of minds, where leading security, safety, fire, and facilities professionals come together, backed by strong ties with the industry’s most influential bodies.

Read more...
Connected commercial drone market to reach US$37.3 billion
News & Events Commercial (Industry) IoT & Automation
The global market for connected commercial drones is forecast to grow from US$18.6 billion in 2024 at a compound annual growth rate (CAGR) of 15% to reach US$37.3 billion in 2029

Read more...
Phishing attacks through SVG image files
Kaspersky News & Events Information Security
Kaspersky has detected a new trend: attackers are distributing phishing emails to individual and corporate users with attachments in SVG (Scalable Vector Graphics) files, a format commonly used for storing images.

Read more...
Fully-integrated browser AI
News & Events
Opera Mini now provides all its smartphone users with its own free built-in browser AI, Aria, including AI chat, Ask Aria and image generation. According to an Opera survey, 80% of South Africans want AI tools integrated into their browser.

Read more...