Keep systems up to date with the latest software and firmware. Manufacturers often release updates that patch security vulnerabilities.
: Training users on the importance of security and the role they play in maintaining it can prevent many issues. Users should understand the risks of default passwords and the best practices for password management.
Rapiscan Systems is one of the world's largest manufacturers of security‑screening equipment, with more than 100,000 units installed in over 170 countries. Its X‑ray baggage scanners, cargo inspection portals, and full‑body imagers are used every day at airport checkpoints, border crossings, government facilities, prisons, and even courtrooms. Yet, for more than a decade, researchers have repeatedly uncovered a deeply troubling pattern: many of these mission‑critical devices ship with hard‑coded, easily guessable, or even unchangeable default passwords—and, in some cases, no password at all. rapiscan default password hot
If a technician defaults on updating credentials during initialization across any of these tiers, an adversary can compromise the entire chain of custody for a scanned physical item. The Operational Impact of Credential Exploitation
Rapiscan’s own manuals advise that factory‑installed passwords should be changed as soon as the device is put into service. Designate a responsible administrator to perform this change before any operational use, and verify that the change has actually been saved. Keep systems up to date with the latest
Standard level for everyday screening. Operators can start scans, manipulate images (zoom, contrast, pseudo-color), and log basic threat assessments.
Keep X-ray screening terminals disconnected from the open internet. Place them on air-gapped local networks or highly restricted VLANs to stop remote credential-stuffing attacks entirely. Users should understand the risks of default passwords
Ensure that all users understand the importance of password security and the risks of using default passwords. Training should cover how to create strong passwords and the procedures for reporting suspicious activity.
Rapiscan has released updates for some models that enforce password changes on first login. Visit their official support portal (login required).
There was nothing salacious, nothing criminal. There were, however, faces—half a dozen—but not passengers’ faces; workers who had lingered too long, peers absent earlier that evening, an off-duty guard with paint on his cuff, a skinny teen with a skateboard, a woman with a suitcase oddly dented at the corner. Each filename was a date, and the last one matched tonight’s.
Call Rapiscan Technical Services at their regional center (Americas: +1-310-978-1100). Provide: