Security Flaw in Office Building Access System: What Businesses Need to Know
A vulnerability in SALTO office door systems could let workers access areas they shouldn't. This affects businesses, not homes.
Source
CISA
Original headline: SALTO ProAccess Space
Plain-English summary by GetCyberRight. Read the full report at the source above.
A security flaw has been discovered in SALTO ProAccess Space, a system used by businesses to control who can enter different areas of their buildings with key cards or electronic access. The vulnerability could allow someone who already has legitimate access to the building to gain entry to restricted areas they are not supposed to access. This issue affects businesses and organizations that use SALTO ProAccess Space systems with the partition feature enabled. If you work in an office building with electronic door access, your employer's security team handles this system. This does not affect home security systems or residential buildings. The flaw only works if an attacker already has valid employee credentials and only in systems where different departments or areas are separated using the partition feature.
For families and home users, no action is needed. This is a business security system issue. If you work in an office building that uses electronic access cards, your employer's IT or security team should be addressing this vulnerability. You do not need to do anything with your personal access card or credentials. For business owners or office managers, contact your SALTO system provider or security team immediately to apply available security patches. Ensure your access control systems are regularly updated and monitored for unusual access patterns. Review who has access to which areas of your building and verify that permissions are still appropriate for each employee's role.
Curated from trusted cybersecurity sources by GetCyberRight
Source: CISAStay ahead of cyber threats
Get our free weekly digest. Real threats, plain language, what to do about them. No spam, ever.
More articles
Fairlife Dairy Attack Shows Why Critical Systems Need Better Protection
A ransomware attack halted all Fairlife dairy production. The real problem: critical production systems were connected to business networks they should never touch.
3 min readRansomware Attack Shuts Down Major US Dairy Producer Fairlife
A ransomware attack on Coca-Cola's Fairlife dairy stopped all US production, showing how cyberattacks now halt real-world operations, not just lock files.
3 min readFairlife Ransomware Attack Shows How Hackers Can Disrupt Your Groceries
A cyberattack on Coca-Cola's Fairlife dairy company halted all U.S. production, revealing how ransomware now threatens the everyday products families depend on.
4 min readWhy Encryption Won't Stop Ransomware: The Fairlife Attack Explained
Coca-Cola's Fairlife ransomware attack reveals a dangerous myth: encryption alone won't protect you if attackers have valid login credentials.
3 min read