Hackers Score Nearly $1M at Device-Focused Pwn2Own Contest
Offensive security researchers found 63 previously unreported vulnerabilities in printers, phones, and network-attached storage devices in the Zero Day Initiative's latest hackathon.
Printer security covers vulnerabilities in networked devices, exposed interfaces, stored documents, and access controls that can affect data confidentiality.
Search across headline titles and summaries.
Background for this topic.
A printer converts digital documents or images into physical output; networked multifunction printers may also scan, copy, fax, and store temporary job data. In an enterprise, such a device is an endpoint with firmware, an operating system, network services, and often an administrative web interface.
Security concerns include unauthorized administration through exposed or weakly protected interfaces, exploitation of unpatched firmware or services, and disclosure of documents retained in queues, internal storage, or printed output. Organizations should restrict printer management to trusted networks, change default credentials, apply vendor firmware updates, use encrypted management and print protocols where supported, and limit stored job data. Access-controlled release printing can reduce exposure of sensitive pages. When printers are relocated or retired, stored jobs, address books, credentials, and configuration data should be securely erased; logs and device details may also matter during vulnerability management and investigations.
Offensive security researchers found 63 previously unreported vulnerabilities in printers, phones, and network-attached storage devices in the Zero Day Initiative's latest hackathon.