Canon has discovered serious vulnerabilities in several printer models. The security flaws identified by the manufacturer could allow cybercriminals to steal sensitive information, such as passwords or login details.
By exploiting the flaws, which Canon considers high severity, an attacker who already has administrator access can compromise all devices on the network to which the printers are connected. Specifically, they can change the LDAP server address in the printer's settings, which can allow them to redirect login attempts to a fake server entirely under their control.
This is when the hacker is likely to intercept a wealth of credentials. With this information, they can take control of the devices connected to the vulnerable printer. This is how the attack can spread.
Which Canon printers are vulnerable?
This poses a serious threat to all computers and devices on the network. According to Canon, the flaws threaten the "security of its customers' printing infrastructure.". Affected printers include the following ranges:
- imageRUNNER ADVANCE Series
- imageRUNNER Series
- ImagePRESS V Series
- imagePRESS Series
- imageCLASS Series
- i-sensys Series
- Satera Series
If you use any of these printers at home or in the office, it is recommended that you exercise caution by following the mitigation instructions below.
What to do while waiting for a patch?
Canon states that a patch is currently in development. Until it is ready for deployment, the manufacturer recommends not connecting printers to public networks on the Internet. As a precautionary measure, the group instead advises using them on a private network, protected by a firewall or a secure router.
Furthermore, Canon encourages all its customers to change the default password on the printer. This precaution should prevent the attacker from gaining the administrator access needed to launch a cyberattack. Take the time to set a strong password for the administrator account and other profiles. Make sure these passwords are difficult to guess. As a reminder, a good password is made up of an illogical and unpredictable sequence of numbers, letters, and symbols. Don't hesitate to turn to a password manager with a generator. Finally, Canon is encouraging organizations and businesses to implement two-factor authentication to block hackers' path.
Source: Canon
0 Comments