Researchers Discover Hardcoded Passwords In Physical Access Controls
Hopefully, not your building’s access control system…
via Greg Otto, Editor-in-Chief at CyberScoop, comes news of what many security researchers, analysts, engineers, developers and architects have feared (and in some cases obviously have known) for some time: Hardcoded User IDs and Passwords in code running a range of building access controls exists to the detriment of all. Bad news folks. Here’s the Tenable post and a Medium post providing explanatory data on this troubling find… (Tenable security researchers are the discoverers of the incredible security incompetence of the manufacturer under scrutiny [I’ll wager many other manufacturers are guilty of this practice as well]).
*** This is a Security Bloggers Network syndicated blog from Infosecurity.US authored by Marc Handelman. Read the original post at: https://www.infosecurity.us/blog/2019/1/28/hardcoded-passwords-in-physical-access-the-entries
