Skip to main content

😳 Vulnerabilities

A vulnerability is a weakness which can be exploited by a cyber attck in order to gain unauthorised access to a computer system.

Technical#

- Outdated, inadequate or weak encryption
- Out-of-date software/hardware/firmware
- Software no longer supported by the supplier
- Compatibility and use of legacy systems
- Fail-open electronic locks
- Weak open electronic locks
- Missing authenication or authorisation
- Exploitable bugs/zero day bugs

Non Technical#

Employees
- Not following policies and procedures
- Poor competency level of staff
- Lack of recruitment screening
- Poor data hygine such as not archiving 1formant staff accounts access
Physical access controls
- Door access codes not changed regularly
- Simple access codes (eg 1234) and reusing access codes
- Unnecessary staff access to secure areas