Security researchers at Zero Science Lab have disclosed a critical vulnerability in Honeywell’s Trend IQ4xx series of Building Management System (BMS) controllers, revealing that the devices expose their full web-based Human-Machine Interface (HMI) without any authentication in their factory-default configuration. The advisory, tracked as ZSL-2026-5979, was publicly released on March 2, 2026, after months of […]

The post Honeywell Controllers Widely Exposed Without Authentication appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.