HP solves printer vulnerability problem

Hewlett-Packard Company has issued a new firmware that according to the company solves the recently discovered security hole affecting certain HP printers.

This comes as a reaction to the discovery of Columbia University researchers that was made in November 2011. According to them they have discovered a new class of security flaws that allow hackers to control printers over the Internet. The amazing discovery even suggests hackers could actually cause physical damage to printers by heating their fusers to dangerous levels possibly causing a fire.

So far only HP LaserJet printers have been affected and more precisely models that allow firmware upgrades through a “Remote Firmware Update” process. Since printers do not verify the source and because firmware updates don’t come packed with a signature, anyone can send a virus-laden document to the printer which would instruct the printer to erase its current firmware and install a malware-laced version. Hackers can even do this on printers configured to accept print jobs via the Internet.

HP Logo

At first HP denied the problem by saying that its printers come with a hardware element that prevents the fuser from overheating or causing a fire and that this element cannot be overcome by a firmware change but later the US company released a firmware that solves the security issue. In addition the company also said that as of December 23, no customer reports of unauthorized access have been reported. “HP reiterates its recommendation to follow best practices for securing devices by placing printers behind a firewall and, where possible, disabling remote firmware upload on exposed printers,” HP said in a statement.

Users of affected LaserJet printers can visit HP’s web site and download the new firmware. Additional printer security information is available at www.hp.com/go/secureprinting.


Source: Tom’s Guide

Related posts

Mountain Bike Simulator – for fans only!

Are you into mountain biking or other extreme sports? If yes, then maybe you will like Mountain Bike Simulator – a simulation game by Time Killer Games. The game is not huge in size, which hints of limited game play and if you think so you will be right. It all starts very...

Super Talent offers USB 3.0 flash drive for $14

There’s simply really no reason to buy a USB 2.0 flash drive anymore” says CH Lee COO of SuperTalent. Super Talent offers their USB 3.0 Express Duo flash drive, capable of  transfer speeds of up to 67MB/s when plugged into a USB 3.0 ports for the price of just $14(8GB) version and $29 for the...

Solid State Drives by OCZ Technology Officially Qualified With Adaptec MaxIQ Caching Solutions

The leading provider of high-performance solid-state drives and memory modules for computer devices and systems, OCZ Technology Group, is very pleased to announce that their Solid State Drives and storage solutions are now officially qualified with Adaptec MaxIQ SSD caching products. Solid-State...

Leave a comment