World News

Industry news and insights from Europe and around the World

UK News

Latest news and developments in the United Kingdom

Products

Keep up-to-date with the latest new products and technology

Features

General articles, applications and industry analysis

Hackers expose vulnerable refrigeration systems

UK: Controls manufacturer RDM says it will be contacting customers reminding them to set secure passwords after hackers revealed that hundreds of its systems are vulnerable to cyber attack.

Israeli hackers and activists from the Safety Detective research lab have exposed the extent to which users’ failure to change manufacturers’ default passwords have left thousands of refrigeration and air conditioning systems vulnerable.

Using Shodan, the search engine for internet-connected devices, the hackers uncovered a major security breach in systems manufactured by Glasgow-based controls manufacturer Resource Data Management (RDM).

These control systems are used by a wide range of companies and industries including hospitals and supermarket chains all over the world.

A basic scan is said to have revealed hundreds of installations in the UK, Australia, Israel, Germany, the Netherlands, Malaysia, Iceland, and many other countries around the world. Safety Detective argues that as each installation has dozens of machines under it, many thousands of units could be vulnerable.

The systems all use the unsecured HTTP protocol and the 9000 port (or sometimes 8080, 8100, or even simply 80) and use the default username and password combination. The hackers say that not only can you change refrigerator and freezer settings through this system, you can also modify user settings, alarm settings, and more.

Sites exposed included a UK Marks and Spencer supermarket in Surrey, Italian food manufacturer Menu Italiano, one of the largest pharmaceutical company in Malaysia, a coldstore in Dusseldorf, and a food storage facility in Iceland.

RDM insists that its controls documentation states that the default passwords must be changed when the system is installed, and argues that it has no control over how its systems are set up by the installer. However, it said it would write to all its known customers, installers and distributors reminding them of the importance of changing the default user names and passwords as part of their installation and set up.

Concerns

Concerns over the vulnerability to the increasing numbers of internet-connected devices prompted European manufacturers’ group ASERCOM to publish a free-to-download guide to securing components against the threat of cyber-attacks.

Last month the Cooling Post revealed that a Dutch man had received a prison sentence for hacking into a supermarket refrigeration system and changing the temperature settings. 

Related stories:

ASERCOM guide to cybersecurity24 October 2018
GERMANY: ASERCOM has published a free-to-download guide to securing components against the threat of cyber-attacks. Read more…

Man jailed for supermarket refrigeration hack27 January 2019
NETHERLANDS: A Dutchman has been sentenced to four months prison after hacking into a supermarket refrigeration system. Read more…

Latest News

14th July 2026

Mitsubishi Electric buys Dutch contracting groups APAC and Compac

ITALY/NETHERLANDS: Mitsubishi Electric Hydronics & IT Cooling Systems (MEHITS) has acquired all shares of the Utrecht-based HVAC sales, installation and maintenance company APAC Group and its sister company COMPAC.
14th July 2026

Japanese fridge firms face cartel allegations

JAPAN: The Japanese Fair Trade Commission (FTC) is reported to have raided the offices of three refrigeration companies over suspected bid-rigging and cartel practices.
14th July 2026

Mahan is president of Modine’s new HVAC segment

USA: Modine has appointed Michael Mahan as president of its newly-formed commercial HVAC (CHVAC) business segment.
14th July 2026

Carrier integrates SLD rental brand

UK: SLD Pumps and Power, the industrial pump and generator rental equipment supplier, has been integrated into the Carrier Rental Systems brand.
14th July 2026

US AC and heat pump shipments up 6.7%

USA: US shipments of central air conditioners and air-source heat pumps totalled 919,685 units in May 2026, an increase of 6.7% on May 2025. 
13th July 2026

R290 heat pump recalled due to safety concerns

FRANCE: An R290 monobloc heat pump is the subject of a recall in France due to fire or explosion concerns in the event of a refrigerant leak.