Genetec warns on credential governance

Physical security systems are now plain old networked systems — cameras, badge readers, video platforms, control rooms, cloud dashboards. That means they inherit the same identity mess as the rest of IT, but with a nastier payoff if something goes wrong. A stolen admin login does not just expose files. It can unlock doors, blind cameras, or hand an attacker the map of a site. That is the gap Genetec is pushing on this week: passwords by themselves are no longer enough, especially now that AI makes credential attacks faster and cheaper. (markets.businessinsider.com) ### What did Genetec actually say? On May 5, Genetec said organizations should strengthen credential governance across connected physical-security systems — specifically the identities and permissions tied to video management systems, access contro(markets.businessinsider.com)on is, and whether those rights still make sense. (markets.businessinsider.com) ### Why is this a physical-security problem now? Because modern physical security is deeply connected. The same environment can include on-prem servers, cloud dashboards, mobile apps, contractors, integrators, and third-party analytics. If identiti(markets.businessinsider.com)wn materials have been leaning into this broader convergence story for months. (genetec.com) ### What counts as “credential governance” here? Basically four things. Kill default and shared credentials. Use stronger authentication — Genetec explicitly points to passkeys and MFA. Review roles so people only get the access they actually need. And clean out stale accounts when employees, vendors, or projects change. None of that is glamorous, but that is the point — most real compromises start with boring i(genetec.com) hacks. (markets.businessinsider.com) ### Where does AI change the equation? AI does not invent bad passwords or overprivileged accounts. It makes exploiting them easier at scale. Genetec’s warning is that AI-driven tools can speed up phishing, credential stuffing, impersonation, and o(markets.businessinsider.com)effectively. (markets.businessinsider.com) ### Is there evidence this is broader than one vendor’s warning? Yes — and that is what makes the story more than a marketing nudge. A separate scan highlighted by The Hacker News looked at over 2 million hosts and 1 million exposed AI services and(markets.businessinsider.com)at all. (thehackernews.com) ### Why do stale accounts matter so much? Because they are the digital equivalent of a master key nobody remembers exists. A former contractor’s login or an old integration account often avoids scrutiny precisely because it is not part of daily operations. In physical security, that can be worse than in regular IT. An attacker who lands in a neglected account m(thehackernews.com)nd of context that makes follow-on attacks much easier. (markets.businessinsider.com) ### Why is Genetec pushing this now? The timing is not random. The company tied the message to World Password Day, but it also sits inside a broader industry shift. Genetec’s 2026 physical security report says AI adoption is rising and physical security teams are taking on a more strategic role across organizations. More automation and more connected systems mean identity stops being an IT side quest and becomes core security plumbing. (genetec.com) ### What is the bottom line? The real warning is simple: physical security systems are no longer special boxes at the edge of the network. They are identity-dependent software environments. If organizations still treat camera logins, badge-system accounts, and command-center roles as operational leftovers, AI will widen that weakness fast. Genetec is basically saying the next big door-c(genetec.com)account hygiene. (markets.businessinsider.com)