Product: Simcom Fuel / Simcom Water
Computrol commissioned an independent security firm to conduct penetration testing on the Simcom platform. The assessment identified vulnerabilities across the system, all of which were addressed before this announcement. Simcom is now operating with the improvements in place.
Security testing of this kind is not a one-time exercise. Computrol treats platform security as an ongoing process, with scheduled assessments planned going forward. This approach is consistent with how Simcom is developed generally: features and security improvements are added to active deployments, not held for major version releases.
Simcom manages fuel and water dispensing transaction data for municipalities, fleets, and utilities. That data includes operator records, vehicle identification, and transaction history. Customers have a legitimate interest in knowing how that data is protected.
In addition to the penetration test, Simcom includes the following security capabilities as standard:
Single Sign-On (SSO)
Integration with Microsoft Entra ID (formerly Azure Active Directory) using OpenID Connect. Organizations manage Simcom access through their existing identity provider.
Two-Factor Authentication (2FA)
2FA is available on Simcom cloud accounts, adding a second verification step beyond username and password.
Encrypted RFID authorization
EasyFuel+ RFID credentials use encryption for vehicle authorization at the terminal, eliminating PIN-based access where operators prefer hands-free identification.
Simcom is a cloud-hosted platform. Computrol manages the infrastructure. Customers do not need to configure security independently - updates and patches are applied centrally. Contact us if you have specific questions about your deployment's security posture.