The background of this story is much more sinister than one might think. This isn't so much about porting a 16-bit classic to a device that wasn't intended for it. The reason this was done is to once again highlight the desolate state of security in the so-called "Internet of Things".
What made the hack possible in this case was a vulnerability in the printer's firmware. This allows any attacker to remote inject malware via a forged firmware update, thanks to a broken crypto and lack of user authentication.
Read the full story on Contextis.
No comments:
Post a Comment