{"id":124,"date":"2019-08-20T04:18:25","date_gmt":"2019-08-20T04:18:25","guid":{"rendered":"https:\/\/www.shipndestroy.com\/blog\/?p=124"},"modified":"2019-08-20T04:48:08","modified_gmt":"2019-08-20T04:48:08","slug":"is-your-printer-cheating-on-you","status":"publish","type":"post","link":"https:\/\/www.shipndestroy.com\/blog\/is-your-printer-cheating-on-you\/","title":{"rendered":"Is Your Printer Cheating On You?"},"content":{"rendered":"\n

We talk a lot about hard-drive destruction to safely and securely destroy outmoded laptops and desktops, however, an area that\u2019s been overlooked is the humble printer sitting in the corner. How can you avoid having a security leak in your office? A group of researchers from the NCC Group<\/a> did a 6-month study on the top printer manufacturers <\/p>\n\n\n\n

The good news? Many of these have been patched. The bad news? If you haven\u2019t updated your software, you could still be vulnerable. Here\u2019s what they uncovered:<\/p>\n\n\n\n

1) Buffering<\/strong>\u00a0 – A buffer overflow occurs when a computer application attempts to assign information to a data structure past the point that the structure is designed to store information. Some vulnerabilities were found in Xerox printers<\/a> and have since been patched. However, if you haven\u2019t uploaded the latest patch, your printer could be vulnerable to attack.<\/p>\n\n\n\n

2) Easy Passwords<\/strong> – Lexmark, Ricoh, and Xerox printers were lacking in an account lockout, so if an attacker keeps trying passwords until they get lucky, these printers were vulnerable. Make sure your passwords are strong and use a tool like LastPass<\/a> to keep all your passwords straight. NEVER write your passwords on a sticky note where a hacker can easily see it on your desk or printer.<\/p>\n\n\n\n

3) DoS Vulnerability<\/strong> \u2013 The NCC Group researchers discovered that some of the printers contained a DoS vulnerability in their Simple Network Management Protocol (SNMP) service. If exploited, this vulnerability could potentially cause the machine to crash.<\/p>\n\n\n\n

Here are the results from the NCC Group\u2019s testing. Be sure to send these along to your cyber-security team to sew up any vulnerabilities in your network:<\/p>\n\n\n\n

\u2022 HP: https:\/\/www.nccgroup.trust\/us\/our-research\/technical-advisory-multiple-vulnerabilities-in-hp-printers\/<\/a>
<\/a>\u2022 Lexmark: https:\/\/www.nccgroup.trust\/us\/our-research\/technical-advisory-multiple-vulnerabilities-in-lexmark-printers\/
<\/a>\u2022 Xerox: https:\/\/www.nccgroup.trust\/us\/our-research\/technical-advisory-multiple-vulnerabilities-in-xerox-printers\/
<\/a>\u2022 Kyocera: https:\/\/www.nccgroup.trust\/us\/our-research\/technical-advisory-multiple-vulnerabilities-in-kyocera-printers\/
<\/a>\u2022 Brother: https:\/\/www.nccgroup.trust\/us\/our-research\/technical-advisory-multiple-vulnerabilities-in-brother-printers\/
<\/a>\u2022 Ricoh: https:\/\/www.nccgroup.trust\/us\/our-research\/technical-advisory-multiple-vulnerabilities-in-ricoh-printers\/<\/a><\/p>\n\n\n\n

And ALWAYS remember to use Ship n Destroy for the safe, secure destruction of old printers, laptops and desktops. https:\/\/shipndestroy.com<\/a>
<\/p>\n","protected":false},"excerpt":{"rendered":"

We talk a lot about hard-drive destruction to safely and securely destroy outmoded laptops and desktops, however, an area that\u2019s been overlooked is the humble printer sitting in the corner. How can you avoid having a security leak in your office? A group of researchers from the NCC Group did a 6-month study on the … More<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-124","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"_links":{"self":[{"href":"https:\/\/www.shipndestroy.com\/blog\/wp-json\/wp\/v2\/posts\/124","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.shipndestroy.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.shipndestroy.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.shipndestroy.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.shipndestroy.com\/blog\/wp-json\/wp\/v2\/comments?post=124"}],"version-history":[{"count":2,"href":"https:\/\/www.shipndestroy.com\/blog\/wp-json\/wp\/v2\/posts\/124\/revisions"}],"predecessor-version":[{"id":127,"href":"https:\/\/www.shipndestroy.com\/blog\/wp-json\/wp\/v2\/posts\/124\/revisions\/127"}],"wp:attachment":[{"href":"https:\/\/www.shipndestroy.com\/blog\/wp-json\/wp\/v2\/media?parent=124"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.shipndestroy.com\/blog\/wp-json\/wp\/v2\/categories?post=124"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.shipndestroy.com\/blog\/wp-json\/wp\/v2\/tags?post=124"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}