Critical Bugs in Canon Printers Allow Code Execution, DDoS (www.darkreading.com)
from IllNess@infosec.pub to cybersecurity@infosec.pub on 07 Feb 01:37
https://infosec.pub/post/8070202

cross-posted from: infosec.pub/post/8070199

No exploitations have been observed in the wild as of yet, according to the company’s European site, but owners should scan for indicators of compromise given that the bugs have been publicly known but unpatched for months.

Beyond the obvious step of updating to the latest firmware, Canon is advising its customers to “set a private IP address for the products and create a network environment with a firewall or wired/Wi-Fi router that can restrict network access.”

#cybersecurity

einfach_orangensaft@feddit.de on 07 Feb 02:04 collapse

see that shit? thay why i dont let the damn printer in the network, never trusted that fuck, it prints the serial data or it gets the cheap toner again.

bigkahuna1986@lemmy.ml on 07 Feb 03:41 collapse

It puts the toner on the paper or else it gets the hose again.