Technology
Turns out your office printer is a huge cybersecurity risk
Consider the office printer.
Massive, hulking things — the devices looming in the corner of workplaces around the world have come to represent untold hours of frustration in the form of printer jams and toner problems. According to security researchers set to present their findings this Saturday at the DEF CON hacking convention in Las Vegas, they also happen to be a cybersecurity nightmare.
Daniel Romero Pérez and Mario Rivas Vivar, researchers at NCC Group, announced the discovery of major vulnerabilities on Thursday in name-brand printers made by the likes of Xerox, HP, Lexmark, Kyocera, Brother, and Ricoh. NCC Group shared some of the researchers’ findings with Mashable ahead of the aforementioned Aug. 10 talk, and they’re enough to elicit serious double take.
“These flaws could be used by criminals as to gain long-term backdoor access into companies for possibly years on end, allowing them to come and go as they please, undetected, stealing sensitive data,” a spokesperson explained to Mashable over email. “What’s more, criminals can spy on every print job and even send documents being printed to themselves or other unauthorized third parties.”
Which — considering the type of data important enough to require a backup hard copy —doesn’t sound good.
Interestingly, this announcement follows news that a Russian hacking team exploited unchanged default passwords in office printers this April in an attempt to gain access to sensitive corporate info.
Thankfully, Pérez and Vivar were able to get in touch with the six manufacturers in question and “most of the issues” they discovered have been patched — albeit in the case of an unnamed few companies, it took months of effort to reach them.
Unnervingly, the two researchers found “high risk issues” in all six of the printers they tested.
“We stopped searching after a few vulnerabilities,” notes a slide from their forthcoming presentation. “There are probably more.”
It seems that, even in an online world, relics from the time when paper reigned supreme can still bite you in the ass. You’ve been warned.
-
Entertainment7 days ago
NASA discovered bacteria that wouldn’t die. Now it’s boosting sunscreen.
-
Business6 days ago
Tesla drops prices, Meta confirms Llama 3 release, and Apple allows emulators in the App Store
-
Business5 days ago
TechCrunch Mobility: Cruise robotaxis return and Ford’s BlueCruise comes under scrutiny
-
Entertainment6 days ago
‘The Sympathizer’ review: Park Chan-wook’s Vietnam War spy thriller is TV magic
-
Business4 days ago
Tesla layoffs hit high performers, some departments slashed, sources say
-
Business5 days ago
Meta to close Threads in Turkey to comply with injunction prohibiting data-sharing with Instagram
-
Entertainment4 days ago
ChatGPT vs. Gemini: Which AI chatbot won our 5-round match?
-
Business3 days ago
Former top SpaceX exec Tom Ochinero sets up new VC firm, filings reveal