+ Post New Thread
Results 1 to 10 of 10
IT News Thread, HP printers can be remotely controlled and set on fire, researchers claim in Other News; I wonder how many schools have HP laser printers which would be affected by this flaw? Source : arstechnica.com/business/news/2011/11/hp-printers-can-be-remotely-controlled-and-set-on-fire-researchers-claim.ars Security ...
  1. #1


    Join Date
    Feb 2007
    Location
    51.405546, -0.510212
    Posts
    8,709
    Thank Post
    220
    Thanked 2,615 Times in 1,926 Posts
    Rep Power
    777

    HP printers can be remotely controlled and set on fire, researchers claim

    I wonder how many schools have HP laser printers which would be affected by this flaw?

    Source: arstechnica.com/business/news/2011/11/hp-printers-can-be-remotely-controlled-and-set-on-fire-researchers-claim.ars

    Security researchers at Columbia University have accused HP of selling printers with a flaw that could let hackers gain remote control over the devices. Once compromised, the access can be used to steal personal information, attack networks, and even set printers on fire by feeding them a continuous stream of instructions designed to heat them up.

    The researchers, funded by government and industry grants, reported the flaw to federal officials and HP this month, and gave a demonstration to MSNBC, which has an extensive article on the subject today. HP told MSNBC that it is reviewing the details, but denied that the problem is as extensive as claimed by Columbia PhD student Ang Cui and Professor Salvatore Stolfo.

  2. #2


    Join Date
    Dec 2005
    Location
    In the server room, with the lead pipe.
    Posts
    4,619
    Thank Post
    275
    Thanked 777 Times in 604 Posts
    Rep Power
    223
    I think I'll wait until I see evidence that points to something more than yet another "hey, printers in their default as-shipped config are vulnerable to $whatever" story.

  3. #3

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    10,991
    Thank Post
    851
    Thanked 2,653 Times in 2,253 Posts
    Blog Entries
    9
    Rep Power
    764
    Thats the thing with hp, they build in all the extras, fire starter, packet sniffer, offsite data backup. You just don't get that with other printer vendors

  4. #4


    Join Date
    Feb 2007
    Location
    51.405546, -0.510212
    Posts
    8,709
    Thank Post
    220
    Thanked 2,615 Times in 1,926 Posts
    Rep Power
    777
    Yeah. The headline is very sensationalist (like most are these days). It will be interesting to see how easy/difficult it is to do.

  5. #5


    Join Date
    Mar 2009
    Location
    Leeds
    Posts
    6,506
    Thank Post
    227
    Thanked 848 Times in 727 Posts
    Rep Power
    287
    Quote Originally Posted by SYNACK View Post
    Thats the thing with hp, they build in all the extras, fire starter, packet sniffer, offsite data backup. You just don't get that with other printer vendors
    Or as with viruses windows vs mac there are so many hp printers out there its worth spending more time investigating than say oki

  6. #6


    Join Date
    Mar 2009
    Location
    Leeds
    Posts
    6,506
    Thank Post
    227
    Thanked 848 Times in 727 Posts
    Rep Power
    287
    Quote Originally Posted by Arthur View Post
    Yeah. The headline is very sensationalist (like most are these days). It will be interesting to see how easy/difficult it is to do.
    I did actually once mess round with google and send some random silly prints to some random hp printers dont even know what country they were in

  7. #7

    Michael's Avatar
    Join Date
    Dec 2005
    Location
    Birmingham
    Posts
    9,241
    Thank Post
    239
    Thanked 1,567 Times in 1,249 Posts
    Rep Power
    339
    I think the odds of actually achieving this in a real situation, getting around firewalls and the fact you can password printers... I'm not worried about it.

    If they can do what they claim, they'd publish a video at least. I can't say I've ever seen an exploding printer

  8. #8


    Join Date
    Feb 2007
    Location
    51.405546, -0.510212
    Posts
    8,709
    Thank Post
    220
    Thanked 2,615 Times in 1,926 Posts
    Rep Power
    777
    HP have posted firmware updates for most of their LaserJet printers to fix this vulnerability. I was looking forward to seeing one on fire.

    HP has built a firmware update to mitigate this issue and is communicating this proactively to customers and partners. No customer has reported unauthorized access to HP. HP reiterates its recommendation to follow best practices for securing devices by placing printers behind a firewall and, where possible, disabling remote firmware upload on exposed printers.

    The firmware update can be found at www.hp.com/support and selecting Drivers.

    Additional printer security information is available at www.hp.com/go/secureprinting. (Source)

  9. #9

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    10,991
    Thank Post
    851
    Thanked 2,653 Times in 2,253 Posts
    Blog Entries
    9
    Rep Power
    764
    Quote Originally Posted by Arthur View Post
    I was looking forward to seeing one on fire.
    It would have made my Christmas

  10. #10

    DaveP's Avatar
    Join Date
    Oct 2006
    Location
    Can't talk now: The mother-ship is calling!
    Posts
    8,707
    Thank Post
    351
    Thanked 1,268 Times in 866 Posts
    Blog Entries
    4
    Rep Power
    1124

SHARE:
+ Post New Thread

Similar Threads

  1. Setting up mapping and Lun on HP MSA SAN
    By ranj in forum Hardware
    Replies: 2
    Last Post: 31st August 2010, 06:40 PM
  2. Terminal Services and Ranger Remote Control
    By paulmcp in forum Network and Classroom Management
    Replies: 5
    Last Post: 29th January 2009, 10:15 AM
  3. Ranger remote control screen flickers on connect
    By cookie_monster in forum Network and Classroom Management
    Replies: 18
    Last Post: 12th December 2007, 03:09 PM
  4. Vista and HP Printer Drivers
    By metalmonkey in forum Windows Vista
    Replies: 5
    Last Post: 21st June 2007, 12:51 AM
  5. Replies: 21
    Last Post: 11th July 2006, 07:37 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •