Esc

Change Default Password

D3-CFP
D3-CFP (Change Default Password)

Definition

Changing the default password means replacing the factory-set credentials with a strong, unique password before the device is deployed, preventing unauthorized access.

How it works

Change the default password as soon as a new device is received. The default credentials are normally documented in an instruction manual that is either packaged with the device, published online through official means, or published online through unofficial means.

Considerations

  • These should be changed before a device is brought online so that an adversary cannot take advantage of these default credentials.
  • Strong and complex passwords are preferred if the technology allows.
loading...
json
loading...

References

All
Internet Article
External Knowledge Base

The following references were used to develop the Change Default Password knowledge-base article.

(Note: the consideration of references does not imply specific functionality exists in an offering.)

CISA CPG Checklist

Reference Type: Internet Article Author: CISA
Source:
https://www.cisa.gov/resources-tools/resources/cisa-cpg-checklist

Guide to Operational Technology (OT) Security

Reference Type: Internet Article Author: NIST
Source:
https://csrc.nist.gov/pubs/sp/800/82/r3/final

MITRE ATT&CK - Password Policies

Reference Type: External Knowledge Base Author: MITRE
Source:
https://attack.mitre.org/mitigations/M0927/

A knowledge graph of cybersecurity countermeasures