A grouping of serious printer bugs, unveiled last summer's Pwn2Own, were patchless for months but are finally fixed now.

cross-posted from: https://infosec.pub/post/8070199

No exploitations have been observed in the wild as of yet, according to the company’s European site, but owners should scan for indicators of compromise given that the bugs have been publicly known but unpatched for months.

Beyond the obvious step of updating to the latest firmware, Canon is advising its customers to “set a private IP address for the products and create a network environment with a firewall or wired/Wi-Fi router that can restrict network access.”

  • einfach_orangensaft@feddit.deEnglish
    81·
    5 months ago

    see that shit? thay why i dont let the damn printer in the network, never trusted that fuck, it prints the serial data or it gets the cheap toner again.