Security

Researchers Find Hardcoded Password Vulnerability in Access Control System

“White-hat” cyber security company, Tenable, last month discovered a potentially catastrophic flaw in PremiSys, an access control system run by IDenticard. The hardcoded credentials that Tenable found in the firm’s devices provide administrator access to the entire service through an end-point that controls the system. This means that anyone with those passwords would be able to modify the contents or even dump the entire badge system database, in addition to a variety of other processes, without obstacles. A malicious attacker discovering those passwords could disrupt building operation, block entry/exit for occupants, or allow physical access to unauthorized persons. Researchers at the Maryland-based Tenable found the username and password - “PremisysUsr” / “ID3nt1card” - hardcoded into the database configuration as a default. Tenable claim that the configuration file contains an encrypted form of the default password, and that the only way for customers to change their password is to request an encrypted version of their desired […]

Stay ahead of the pack

with the latest independent smart building research and thought leadership.

Have an account? Login

Subscribe Now for just $180 USD per year per user ( just $15 USD per month) for Access to Quality Independent Smart Building Analysis!

What Exactly Do you Get?

  • Read every article published in full and get unlimited access to our archive of over 1,400 articles.
  • 10% discount on ALL Memoori Research reports for Subscribers! So if you only buy ONE report you will get your subscription fee back!
  • Industry-leading Analysis Every Week, Direct to your Inbox.
  • AND Cancel at any time
Subscribe Now

Most Popular Articles

Smart Buildings

The Single Pair Ethernet Enabler for Building Connectivity

“For over 30-years twisted-pair (TP) cabling has been used to transmit voice, data, and power over the same infrastructure. It has been crucial to integrating operational technology (OT) and information technology (IT) on a single TP ethernet platform during that time as we have seen technological advancements that have expanded the use of the now-ubiquitous […]

Smart Buildings

Mapping the Strategic Direction of Trane Technologies

In this Research Note, we take an in-depth look at the business strategy of Trane Technologies based on their acquisitions and partnerships since 2020. Trane Technologies was formed in 2020 following a spin-off from Ingersoll Rand’s Climate Division. As a vertically integrated enterprise, Trane offers commercial and residential HVAC equipment and aftermarket services as well […]

Subscribe to the Newsletter & get all our Articles & Research Delivered Straight to your Inbox.

    1. Please enter a valid email

    2. Please enter your name

      Please enter company name

    3. By signing up you agree to our privacy policy