The Louvre's Cctv Password Was "louvre"
Posted2 months agoActiveabout 2 months ago
twitter.comTechstory
skepticalnegative
Debate
20/100
CybersecurityPassword SecurityMuseum Technology
Key topics
Cybersecurity
Password Security
Museum Technology
The Louvre museum's CCTV password was reportedly 'Louvre', sparking criticism of the museum's cybersecurity practices, with commenters discussing the implications and potential explanations for such a simple password.
Snapshot generated from the HN discussion
Discussion Activity
Moderate engagementFirst comment
1h
Peak period
7
0-12h
Avg / period
2
Comment distribution14 data points
Loading chart...
Based on 14 loaded comments
Key moments
- 01Story posted
Nov 3, 2025 at 2:28 PM EST
2 months ago
Step 01 - 02First comment
Nov 3, 2025 at 3:51 PM EST
1h after posting
Step 02 - 03Peak activity
7 comments in 0-12h
Hottest window of the conversation
Step 03 - 04Latest activity
Nov 10, 2025 at 1:50 PM EST
about 2 months ago
Step 04
Generating AI Summary...
Analyzing up to 500 comments to identify key contributors and discussion patterns
ID: 45803302Type: storyLast synced: 11/20/2025, 12:59:45 PM
Want the full context?
Jump to the original sources
Read the primary article or dive into the live Hacker News thread when you're ready.
https://en.wikipedia.org/wiki/Swiss_cheese_model
It’s not smart to rely on a single point of failure to protect everything 100%. Maybe if you’re protecting home movies lol. But at the Louvre? Sheesh…
- What if the routers / modems have a security vulnerability?
- What if there’s (accidentally) an exposed ethernet cable somewhere in the museum that would let someone immediately access a private VLAN?
- What if someone breaks into the security room? either physically breaking the door down or stealing the keys to the room. That’s one of the first few passwords i’d guess as a thief.
> What if someone breaks into the security room?
Normally a security / monitoring room has the cameras on the screen 24/7, so once you somehow get in and somehow there's nobody there and somehow nobody notices you breaking in... you just look at the screen.
Regarding the security room - sure the feed is live on the screen. That makes sense. But I would definitely expect more “admin” related features to require a login though. Like deleting footage, disabling a specific camera, etc.
Maybe one of the reasons the poster did not want to link the article is because the audit this finding is from was conducted 11 years ago.
Thieves, especially if there's a path to the room in which the cameras are accessed which is poorly covered by the camera distribution.
Isn’t this suppose to be a “closed-circuit”.
Of course, this also means we don't need Lester Crest to help us find out the vault contents (so no need to hack the security guard's phone for the wifi password either).
Well, it is a "medium" password. Not "strong", not "weak", but "medium". It has 6 characters (instead of 8-11), it has big letters, small letters, the only thing missing being numbers and special signs. /s
Make security hard for users and the users will skip it entirely.