1. Homepage
  2. Equities
  3. Finland
  4. Nasdaq Helsinki
  5. WithSecure Oyj
  6. News
  7. Summary
    FSC1V   FI0009801310

WITHSECURE OYJ

(FSC1V)
  Report
Real-time Estimate Cboe Europe  -  05/16 11:25:00 am EDT
4.950 EUR   +2.27%
01:01aWithSecure publishes restated financial information for its continuing operations for 2021
GL
01:01aWithSecure publishes restated financial information for its continuing operations for 2021
GL
05/13The Finnish Financial Supervisory Authority has approved the demerger and listing prospectus related to the planned partial demerger of WithSecure Corporation
GL
SummaryQuotesChartsNewsRatingsCalendarCompanyFinancialsConsensusRevisions 
SummaryMost relevantAll NewsAnalyst Reco.Other languagesPress ReleasesOfficial PublicationsSector news

F Secure Oyj : Secure discovers vulnerabilities aecting over 150 HP printer models

11/30/2021 | 08:31am EDT

Helsinki, Finland - November 30, 2021: HP Inc. has issued patches that fix security vulnerabilities cyber security provider F-Secure discovered in over 150 of their multifunction printer (MFP) products. According to research published today by F-Secure, attackers can exploit the vulnerabilities to seize control of vulnerable devices, steal information, and further infiltrate networks to inflict other types of damage.

F-Secure security consultants Timo Hirvonen and Alexander Bolshev discovered exposed physical access port vulnerabilities (CVE-2021-39237) and font parsing vulnerabilities (CVE-2021-39238) in HP's MFP M725z - part of HP's FutureSmart line of printers. Security advisories published by HP list over 150 different products affected by the vulnerabilities.

The most effective method would involve tricking a user from a targeted organization into visiting a malicious website, exposing the organization's vulnerable MFP to what's known as a cross-site printing attack. The website would, automatically, remotely print a document containing a maliciously-crafted font on the vulnerable MFP, giving the attacker code execution rights on the device.

An attacker with these code execution rights could silently steal any information ran (or cached) through the MFP. This includes not only documents that are printed, scanned, or faxed, but also information like passwords and login credentials that connect the device to the rest of the network. Attackers could also use compromised MFPs as a beachhead to penetrate further into an organization's network in pursuit of other objectives (such as stealing or changing other data, spreading ransomware, etc.)

While the researchers determined that exploiting the vulnerabilities is difficult enough to prevent many low-skilled attackers from using them, experienced threat actors could make use of them in more targeted operations.

Furthermore, the researchers discovered the font parsing vulnerabilities are wormable, meaning attackers could create self-propagating malware that automatically compromises affected MFPs and then spreads to other vulnerable units on the same network.

"It's easy to forget that modern MFPs are fully-functional computers that threat actors can compromise just like other workstations and endpoints. And just like other endpoints, attackers can leverage a compromised device to damage an organization's infrastructure and operations. Experienced threat actors see unsecured devices as opportunities, so organizations that don't prioritize securing their MFPs like other endpoints leave themselves exposed to attacks like the ones documented in our research," explained Hirvonen.

Advice for securing MFPs

Considering HP's status as a leading provider of MFPs with an estimated 40% of the hardware peripheral market*, many companies throughout the globe are likely using vulnerable devices.

Hirvonen and Bolshev contacted HP last spring with their findings and worked with them to help patch the vulnerabilities. HP has now published firmware updates and security advisories for the affected devices.

While the attack's difficulty makes it impractical for some threat actors, the researchers say that it's important for organizations targeted by advanced attacks to secure their vulnerable MFPs.

In addition to patching, measures for securing MFPs include:

  • Limiting physical access to MFPs.
  • Segregating MFPs in a separate, firewalled VLAN.
  • Using anti-tamper stickers to signal physical tampering with devices.
  • Using locks (such as Kensington locks) to control access to internal hardware.
  • Following vendors' best practices for preventing unauthorized modifications to security settings.
  • Placing MFPs in CCTV-monitored areas to record any physical usage of a hacked device at the time it was compromised.

"Large enterprises, companies working in critical sectors, and other organizations facing highly-skilled, well-resourced attackers need to take this seriously. There's no need to panic, but they should assess their exposure, so they're prepared for these attacks. Although the attack is advanced, it can be mitigated with the basics: network segmentation, patch management, and security hardening," said Hirvonen.

A detailed technical write-up of the research is available on F-Secure Labs: https://labs.f-secure.com/publications/printing-shellz.

*Source: https://www.idc.com/promo/hardcopy-peripherals

Disclaimer

F-Secure Oyj published this content on 30 November 2021 and is solely responsible for the information contained therein. Distributed by Public, unedited and unaltered, on 30 November 2021 13:30:07 UTC.


ę Publicnow 2021
All news about WITHSECURE OYJ
01:01aWithSecure publishes restated financial information for its continuing operations for 2..
GL
01:01aWithSecure publishes restated financial information for its continuing operations for 2..
GL
05/13The Finnish Financial Supervisory Authority has approved the demerger and listing prosp..
GL
05/10Invitation to WithSecure and F-Secure Capital Markets Day on 3 June 2022
GL
05/10Invitation to WithSecure and F-Secure Capital Markets Day on 3 June 2022
AQ
05/02WITHSECURE CORPORATION : Notice pursuant to the Finnish Securities Market Act, Chapter 9, ..
GL
05/02WITHSECURE CORPORATION : Notice pursuant to the Finnish Securities Market Act, Chapter 9, ..
AQ
04/27WithSecure Oyj Reports Earnings Results for the First Quarter Ended March 31, 2022
CI
04/27TRANSCRIPT : F-Secure Oyj, Q1 2022 Earnings Call, Apr 27, 2022
CI
04/27With Secure Interim Report 1 January - 31 March 2022
GL
More news
Analyst Recommendations on WITHSECURE OYJ
More recommendations
Financials
Sales 2022 248 M 258 M 258 M
Net income 2022 7,25 M 7,55 M 7,55 M
Net cash 2022 113 M 117 M 117 M
P/E ratio 2022 108x
Yield 2022 0,55%
Capitalization 845 M 880 M 880 M
EV / Sales 2022 2,96x
EV / Sales 2023 2,72x
Nbr of Employees 1 589
Free-Float 63,4%
Chart WITHSECURE OYJ
Duration : Period :
WithSecure Oyj Technical Analysis Chart | MarketScreener
Full-screen chart
Technical analysis trends WITHSECURE OYJ
Short TermMid-TermLong Term
TrendsNeutralNeutralNeutral
Income Statement Evolution
Consensus
Sell
Buy
Mean consensus BUY
Number of Analysts 3
Last Close Price 4,84 €
Average target price 5,60 €
Spread / Average Target 15,7%
EPS Revisions
Managers and Directors
Juhani Hintikka President & Chief Executive Officer
Thomas Jansson Chief Financial Officer
Risto Kalevi Siilasmaa Chairman
Jari Still Chief Information Officer & VP-Information
Jyrki Tulokas Chief Technology Officer
Sector and Competitors
1st jan.Capi. (M$)
WITHSECURE OYJ-2.52%880
ADOBE INC.-28.50%191 575
WORKDAY INC.-33.27%46 241
ROPER TECHNOLOGIES, INC.-12.51%45 577
AUTODESK, INC.-29.92%42 868
ELECTRONIC ARTS INC.-5.28%35 136