According to an employee with knowledge of the system, the password to the Louvre's video surveillance system was simply "Louvre" at the time of the robbery last month.
If your network does not have NAC and just lets unknown devices plugged into a random wall outlet inside, you might as well get rid of passwords alltogether.
There are some ways how to get around NAC. If it’s older 802.1x, you can use https://github.com/s0lst1c3/silentbridge, but what usually works for us is simply cloning the printer MAC, because older printers can’t do authentication and rely on MAC whitelisting.
Making a MITM device that just clones the MAC when you plug it between the printer and the network isn’t that difficult.
If your network does not have NAC and just lets unknown devices plugged into a random wall outlet inside, you might as well get rid of passwords alltogether.
There are some ways how to get around NAC. If it’s older 802.1x, you can use https://github.com/s0lst1c3/silentbridge, but what usually works for us is simply cloning the printer MAC, because older printers can’t do authentication and rely on MAC whitelisting.
Making a MITM device that just clones the MAC when you plug it between the printer and the network isn’t that difficult.
But I agree, NAC is important!