Post by : Rameen Ariff

Paris – France’s National Cybersecurity Agency (ANSSI) has disclosed a startling detail in the wake of the $102 million daytime robbery at the Louvre: the museum’s primary protection systems were accessible with the easily guessed password “LOUVRE.” The finding has intensified scrutiny of the Louvre’s digital security practices.

The dramatic October 19 raid involved four men in construction vests and motorcycle helmets who used a cherry picker to reach the Apollo Gallery. In roughly seven minutes the team smashed display cases with chainsaws and escaped with eight irreplaceable jewels, including a sapphire diadem, a necklace and a single earring once owned by Queens Marie-Amelie and Hortense.

Cybersecurity Weaknesses Uncovered

ANSSI’s review shows its agents were able to log into the museum’s video surveillance servers using the same simplistic password. A 2014 audit had already flagged serious vulnerabilities, noting that key protection systems ran on software more than 20 years old. The report warned that anyone gaining control of those systems could enable theft or damage to the collection.

It remains unclear whether the Louvre implemented the recommended fixes or changed critical credentials in the years after the audit.

Aftermath and Arrests

Authorities have since detained four suspects; investigators believe three were directly involved in the break-in. Officials say the perpetrators were experienced and may have been hired for the operation. During the escape they lowered the cherry picker, tried to set the machine on fire and fled on nearby scooters.

Louvre director Laurence des Cars acknowledged that surveillance cameras did not fully cover the balcony entry used by the thieves, and that the nearest camera was angled away. Culture Minister Rachida Dati said internal systems were functioning during the incident but external protections displayed "major flaws."

Planned Security Upgrades

The museum has announced plans to install anti-ramming and anti-intrusion barriers before year-end. The revelation that a trivial password guarded critical systems has renewed calls for urgent modernization of the Louvre’s cybersecurity to protect priceless cultural assets.

#Global