Security News > 2020 > February > Vulnerabilities Allow Hackers to Access Honeywell Fire Alarm Systems
2020-02-24 13:04
Honeywell has released patches for a couple of potentially serious vulnerabilities affecting a web server used by its Notifier fire alarm systems.
With this information at hand, the attacker can gain full access to the fire alarm system.
Krstic told SecurityWeek that a Shodan search revealed six instances of the Notifier fire alarm web server exposed to the internet.
Honeywell has released firmware update 4.51 to patch the vulnerabilities.
In addition to releasing patches, Honeywell has advised users to isolate their systems from the internet, use VPNs when remote connections are required, and set strong passwords.