Sunday, September 25, 2011

Should print server be secured?

Recently, there are many news on data lost of customer information, product designs and algorithms from big corporation. WikiLeaks that exposed sensitive communication. Printers can be one of the good source of data leakage.

When surfing and "googling" around the Internet, we still see many print servers accessible from Internet. Some of these print servers were even configured with default login credential.

Beside data leakage, you can also create some disruptions to their business by making unauthorized changes.

Below are some examples, which i manage to gain access.



From the Admin console, we can access the "System Tools".




We can also make changes in "Advanced Setting".




w01f advise: Print server should not be accessible from the Internet. If access from the Internet is required, make sure it is properly secured and change all default login.

No comments: