The article is particularly important as few businesses realize it’s even possible that printers pose a security threat
Hoboken, NJ and New York City, NY (PRWEB) May 16, 2013
A new article entitled: The Secret Security Threat: Printers is now available from eMazzanti Technologies, an IT and computer expert in the Hoboken, NJ and New York City areas.
The article is available here.
“The article is particularly important as few businesses realize it’s even possible that printers pose a security threat,” noted Carl Mazzanti, eMazzanti Technologies, CEO. “The more functions a printer has like the ability to scan to a file and scan to email, the greater the risk for a security breach.”
In a presentation at the last DefCon 19 conference, security researcher Deral Heiland demonstrated various ways to break into an Internet-ready, multifunction printer. These include printers that can scan to a file, scan to email and fax documents, and the vulnerabilities he found are similar across all printer OEMs.
Many Brands of Printers Vulnerable
According to Mazzanti, Heiland recommends that If a user has not taken the time to access the administration control panel webpage for his printer and change its default passwords, he might want to do that sooner than later. However, that will only partially slow down a very persistent criminal.
For example, Heiland demonstrated that if a user did change the default Toshiba printer password from 123456 to something unique, a criminal can simply add an extra backslash to the URL to gain administrator access to the device. Heiland also said that if user copies the URL from the HP Officejet printer login page and then add "page=" to the end and paste it back in, this will bypass any new passwords that have been added to those printers. This could let a hacker access sensitive documents that have been recently scanned or printed.
Nightmare Printer Breach Stories
Mazzanti reviews a few recent printer security stories in the article as well to demonstrate the ubiquitous nature of the printer attacks across all different manufacturers.
According to a July 27, 2012 story in Computerworld: “The Blaster worm hit McCormick and Co. hard and fast. It entered the famous spice company through a service provider connection and ripped across plants and offices in a matter of hours. What was most vexing, however, was that the virus kept coming back on disinfected network segments.
Upon further investigation, it turned out that Blaster, as well as some instances of the Sasser worm, were trying to re-propagate from infected network printers.”
Hire a Professional IT Expert
"Businesses with security threats on any device should seek professional IT help to protect networks and data,” said Mazzanti. “Management that insists it can stay up with all the security threats by themselves are going to regret not hiring an expert when a system goes down or data is corrupted or stolen.”
About eMazzanti Technologies
With a company name that sounds more like a purebred, high-performance sports car than a IT support and consulting firm, eMazzanti Technologies is all about delivering powerful solutions in a variety of Outsourced IT services, such as cloud computing, managed printing services, PCI DSS compliance, computer network management, network troubleshooting, business continuity and disaster recovery, green computing, mobile workforce technology, information security, cloud computing, cloud computing services, and business information optimization in the most efficient manner possible. The Hoboken, N.J., firm is located in one of the most densely populated - and competitive - regions in the U.S. It provides business technology consulting services for companies ranging from home offices to multinational corporations in the New York metropolitan area, the United States and throughout the world. eMazzanti Technologies is Microsoft's 2012 Partner of the Year for the third year, WatchGuard's Partner of the Year for three years running and made the Inc. 5000 for the third year in a row. For more information contact: Carl Mazzanti 201-360-4400 or emazzanti.net. Twitter: @emazzanti , Facebook: Facebook.com/emazzantitechnologies.