Security

Researchers Find Hardcoded Password Vulnerability in Access Control System

Copy article link

“White-hat” cyber security company, Tenable, last month discovered a potentially catastrophic flaw in PremiSys, an access control system run by IDenticard. The hardcoded credentials that Tenable found in the firm’s devices provide administrator access to the entire service through an end-point that controls the system. This means that anyone with those passwords would be able to modify the contents or even dump the entire badge system database, in addition to a variety of other processes, without obstacles. A malicious attacker discovering those passwords could disrupt building operation, block entry/exit for occupants, or allow physical access to unauthorized persons. Researchers at the Maryland-based Tenable found the username and password – “PremisysUsr” / “ID3nt1card” – hardcoded into the database configuration as a default. Tenable claim that the configuration file contains an encrypted form of the default password, and that the only way for customers to change their password is to request an encrypted version of their desired […]

Stay ahead of the pack

with the latest independent smart building research and thought leadership.

Have an account? Login

Subscribe Now from just $400 per year per user for Access to Quality Independent Smart Building Research & Analysis!

What Exactly Do you Get?

  • Access to Website Articles and Notes. Unlimited Access to the Library of over 2000 Articles Spanning 10 Years.
  • 10% discount on ALL Memoori Research reports for Subscribers!
  • Industry-leading Analysis Every Week, Direct to your Inbox.
  • AND Cancel at any time
Subscribe Now

Want an Enterprise subscription? Get in touch.
Email us at: support@memoori.com

Most Popular Articles

SmartVatten 2025
Smart Buildings

Smartvatten Strengthens European Position with 2025 LeakLook Acquisition

This Research Note examines Smartvatten, a Finnish specialist in water efficiency technology and expertise in Northern Europe. It updates our previous article in March 2024, covering Smartvatten’s solutions, key developments in 2024, sustainability partnerships and the September 2025 acquisition of LeakLook, a Finnish specialist in IoT-driven water monitoring for real estate. Smartvatten Profile Established in […]

Johnson Controls Tyco Merger
Smart Buildings

Johnson Controls + Tyco: Nearly 10 Years on from the $16.5B Mega Merger

Nearly 10 years after the merger between Johnson Controls and Tyco in 2016, the $16.5 billion deal stands as one of the most significant consolidation moves in the building technologies sector. Today, with the benefit of hindsight and financial data, we can evaluate whether this mega-merger achieved its ambitious objectives. The 2016 merger created a […]

Verdigris Energy Management 2025
Energy

Verdigris: Comprehensive Review of the Energy Management Platform in 2025

This Research Note takes an in-depth look at Verdigris, provider of a hardware-enabled SaaS energy management solution for commercial and industrial buildings. We examine the company offerings, disclosed funding, deployments, and partnerships before providing a Memoori view on the firm. Verdigris Profile Co-founded in 2010 by Mark Chung, CEO, Verdigris Technologies Inc. is headquartered at […]

Subscribe to the Newsletter & get all our Articles & Research Delivered Straight to your Inbox.