New hack for MFPs and printers?
Forescout Security is warning of new set of vulnerabilities for IoT devices that get their TCP/IP stack code from third parties, including Nucleus NET, FreeBSD and NetX
- Could allow hackers to launch Denial of Service (DoS) or Remote Code Execution (RCE)
- Have named it the “Name:Wreck” vulnerability
- Over 100 million devices are potentially affected, including printers and MFPs
- “This can be an entry point, a foothold into a network and from there you can decide, basically, what the attack is”; stated Daniel dos Santos, Research Manager
o “One of the things that you can do is just basically take devices offline by sending malicious packets that crash the device”
o “Another thing is when you are able to actually execute code on the device, that opens up the possibility of persistence on the network or moving laterally in the network to other kinds of targets”
o “gain access to enterprise networks and steal sensitive information”
o Healthcare could be among the most affected