In this video, HP's Security Specialist explains how the company has developed uniquely effective strategies for keeping its printers safe from cyber-attack. HP takes a different approach to securing its printers than other manufacturers. Instead of merely guarding the network on which the printers sit, HP printers have security built in from the base hardware upwards, starting with the printer's BIOS. This is protected with a technology called SureStart. The next level is the firmware, which is most likely to be susceptible to attack.
Many companies don't realise what powerful computing is contained within a printer, and how readily this could be used to compromise the network. IT administrators may be conscientious about keeping printer firmware up to date. But they may not be so careful about where that firmware has come from. It could be a compromised version itself, and without monitoring, this could sit on the network for months, risking data theft, before anyone realises.
This is where SureStart comes in. By running a low-level check prior to loading the firmware, SureStart checks that the BIOS hasn't been compromised, then the firmware is authenticated and this is augmented by run-time intrusion detection. This checks the printer's behaviour against what it normally does during day-to-day activities. If these checks fail, then the printer will automatically reboot into a safe mode, and then SureStart will fix the BIOS. Best of all, this is just the foundation of HP's printer security, with further layers of protection and monitoring above.
Find out more printer security.
-
Marc Benioff’s agentic AI gambit is paying dividendsAnalysis Agentforce is dominating the agenda at Salesforce – and it appears to be working
-
Enterprises are worried about agentic AI security risks – Gartner says the answer is just adding more AI agentsNews Not content with deploying agents for frontline operations, some enterprises might double down with ‘guardian agents’ to monitor their bot-based workforces
-
GTA V vulnerability exposes PC users to partial remote code execution attacksNews Millions of GTA Online players could fall prey to malware or data corruption
-
The IT Pro Podcast: Going passwordlessIT Pro Podcast Something you are, or something you have, could be more important than a password you know in the near future
-
Podcast transcript: Going passwordlessIT Pro Podcast Read the full transcript for this episode of the IT Pro Podcast
-
Hyundai vulnerability allowed remote hacking of locks, engineNews Researchers discovered flaws in a number of apps linked to car brands that allowed for personal details and remote control of vehicles using easily-obtained IDs
-
The sooner the FIDO Alliance can shut down passwords, the betterOpinion Passwords aren’t going anywhere, but that hasn’t stopped the dream of a passwordless future – and it seems that Apple, Google and Microsoft agree
-
What getting hacked taught me about cyber empathyOpinion The industry needs a little less ‘I told you so’ when it comes to dealing with victims
-
Vulnerability hunters are cut from a different cloth – they’re naturally inquisitiveOpinion So, you want to be a hacker? We share the best advice and resources for getting started
-
Kaspersky Password Manager generates passwords that can be 'cracked in seconds'News A now-patched vulnerability means specialised tools can game Kaspersky's method for creating passwords
