The Louvre’s surveillance-system password at the time of last month’s $102 million Napoleonic jewellery heist was reportedly the single word "Louvre," a staffer told ABC News. Libération says France’s National Cybersecurity Agency first flagged the credential in a 2014 audit, and it appears not to have been changed. The disclosure has sharpened criticism of understaffing and outdated security — the museum director said perimeter protections were weak — and the jewels remain missing while four suspects face charges.
Louvre’s Surveillance Password During $102M Jewel Heist Was Simply "Louvre" — A Stark Security Wake-Up Call
The Louvre’s surveillance-system password at the time of last month’s $102 million Napoleonic jewellery heist was reportedly the single word "Louvre," a staffer told ABC News. Libération says France’s National Cybersecurity Agency first flagged the credential in a 2014 audit, and it appears not to have been changed. The disclosure has sharpened criticism of understaffing and outdated security — the museum director said perimeter protections were weak — and the jewels remain missing while four suspects face charges.
03:30, 07.11.2025Security
Louvre password revealed amid criticism of museum security
An employee at the Louvre told ABC News that the museum’s surveillance-system password in place during last month’s high‑value jewellery theft was the single word "Louvre." That detail was first reported by French daily Libération, which cited confidential documents and said France’s National Cybersecurity Agency (ANSSI) flagged the credential during a 2014 audit.
It remains unclear whether the login was actually used during the smash-and-grab that saw thieves abscond with an estimated $102 million in Napoleonic jewels. According to reports, the robbers reached the Apollo Gallery via a window, reportedly using a basket lift while tourists were present.
Security weaknesses under scrutiny
The password revelation has intensified criticism of the Louvre’s security. The Associated Press reported that staffers had been warning about understaffing in both general and security roles ahead of the brazen robbery, and Paris police have acknowledged parts of the museum’s protection were outdated.
"The museum’s perimeter protections were weak due to underinvestment," Laurence des Cars, president and director of the Louvre, told a French Senate committee. She said the single camera outside the Apollo Gallery did not capture the window used by the burglars and that she had been "appalled" by the museum’s security when she took the role in 2021.
Des Cars has said upgrades are a top priority. The investigation is ongoing: the jewels have not been recovered and four suspects have been charged in connection with the robbery.
Why the password matters
Security experts stress that short, obvious passwords — especially those matching an institution’s name — significantly increase cyber and operational risk. The purported use of "Louvre" as a surveillance login, whether or not it was exploited in this incident, highlights the importance of routine audits, strong authentication practices (including longer, complex passwords and multi‑factor authentication) and adequate staffing and camera coverage for high‑value cultural sites.
Note: Reporting is based on statements to ABC News and coverage by Libération and the Associated Press; some details remain under investigation.