Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Millions of HP LaserJet printers vulnerable to hac

MrSeb (471333) writes | more than 2 years ago

HP 1

MrSeb writes "It seems, though HP is yet to confirm it, that researchers from Columbia University have found a security hole in “tens of millions” of HP LaserJet printers that allows a remote hacker to install new and dangerous firmware on the device. In one example, the researchers used the vulnerability to hack a printer’s fuser — the heating element that dries the ink — causing the paper to turn brown and begin to smoke. The attack vector is depressingly simple: Every time a vulnerable LaserJet printer accepts a print job, it scans that job to see if it includes a firmware update. Unbelievably, the printer doesn't then check the source of the update; HP doesn't digitally sign its updates, and the printer isn't looking for HP's signature. In other words, you can reverse engineer one of HP's firmware updates, program your own, and then insert it into a print job. You can install whatever software you like on millions of network- and internet-connected LaserJet printers."
Link to Original Source

cancel ×

1 comment

Sorry! There are no comments related to the filter you selected.

If you're interested in HP firmware hacks... (1)

skids (119237) | more than 2 years ago | (#38202340)

Check out my sig.

Check for New Comments
Slashdot Login

Need an Account?

Forgot your password?