Abstract
Despite the advancements in security, threats have become more sophisticated than ever-leading companies to think outside the box. Cyberattacks are becoming increasingly sophisticated due to hybrid work. Business continuity often took precedence over security concerns as organizations scrambled to comply with shifting regulations. Now that more people are working remotely via cloud services, IT needs assistance from cybersecurity experts. There are several sources that can pose a threat, including office printers. It is not uncommon for printers to have hundreds of potential entry points for hackers, who can then bring a system to its knees by taking control of one of the printers attached to it. In today’s world, printers are very much computers and are often connected to the Internet. Having advanced abilities makes it easy for cybercriminals to access them. This paper analyzes printer attacks from the past and provides a general methodology for analyzing printer security. Our methodology will be used to conduct online surveys of experienced IT practitioners to explore their exposure to social engineering attacks and security concerns related to printers, digital copiers, and 3D printers. Passive reconnaissance will be conducted to determine the extent to which some network protocols are exposed by these devices. A compiled checklist has been consolidated to be considered by businesses as a risk mitigation technique to secure the devices from vulnerabilities and attacks.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
Giampaolo Bella, Pietro Biondi, and Stefano Bognanni. 2022. Multi-service threats: Attacking and protecting network printers and VoIP phones alike. Internet of Things, Volume 18. https://doi.org/10.1016/j.iot.2022.100507
Joy Reo. 2022. DDoS Hackers Using IoT Devices to Launch Attacks. https://www.corero.com/blog/ddos-hackers-using-iot-devices-to-launch-attacks/
Giampaolo Bella and Pietro Biondi. 2021. You Overtrust Your Printer. Springer International Publishing. https://doi.org/10.1007/978-3-030-26250-1_21
Bill Toulas. 2021. Researchers warn of severe risks from ‘Printjack’ printer attacks. Bleeping Computer. Retrieved from: https://www.bleepingcomputer.com/news/security/researchers-warn-of-severe-risks-from-printjack-printer-attacks/
Kevin Box. 2021. Printer Security Vulnerabilities and What You Can Do About It! Retrieved from: https://www.function-4.com/blog?p=printer-security-vulnerabilities-and-what-you-can-do-about-it-210810
Masha Kozinets. 2022. Printer Security and Vulnerabilities. Retrieved from: https://www.pharos.com/blog/printers-cybersecurity/
HP Development Company, L.P. 2021. https://h20195.www2.hp.com/v2/GetDocument.aspx?docname=4AA6-4525ENW
Emma Woollacott. 2021. HP printer vulnerabilities left enterprise networks open to abuse via ‘cross-site printing’ attack. Retrieved from: https://portswigger.net/daily-swig/hp-printer-vulnerabilities-left-enterprise-networks-open-to-abuse-via-cross-site-printing-nbsp-attack
Jason Firch. 2022. Common Types Of Network Security Vulnerabilities In 2022. Retrieved from: https://purplesec.us/common-network-vulnerabilities/#Vulnerability
Zoho Corporation. 2022. https://www.manageengine.com/network-configuration-manager/network-vulnerabilities.html
Brad Foster. 2022. Are Office Printers Vulnerable to Security Risks? Retrieved from: https://www.imageoneway.com/blog/printers-pose-security-risks
Jens Müller, Vladislav Mladenov, Juraj Somorovsky, and Jörg Schwenk. 2017. “SoK: Exploiting Network Printers,” 2017 IEEE Symposium on Security and Privacy (SP), 2017, pp. 213–230, doi: https://doi.org/10.1109/SP.2017.47.
Grace Lorraine Diaz Intal, Delia Senoro, and Thelma Palaoag. 2021. User Experience Design for Disaster Management Mobile Application using Design Thinking Approach. In Proceedings of the 2020 4th International Conference on Software and e-Business (ICSEB ‘20). Association for Computing Machinery, New York, NY, USA, 7–13. https://doi.org/10.1145/3446569.3446587
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2024 The Author(s), under exclusive license to Springer Nature Switzerland AG
About this paper
Cite this paper
Blancaflor, E.B., Montoya, A.J. (2024). Vulnerabilities in Office Printers, Multifunction Printers (MFP), 3D Printers, and Digital Copiers: A Gateway to Breach Our Enterprise Network. In: Meng, L. (eds) International Conference on Cloud Computing and Computer Networks. CCCN 2023. Signals and Communication Technology. Springer, Cham. https://doi.org/10.1007/978-3-031-47100-1_5
Download citation
DOI: https://doi.org/10.1007/978-3-031-47100-1_5
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-031-47099-8
Online ISBN: 978-3-031-47100-1
eBook Packages: EngineeringEngineering (R0)