Overview
Explore the security vulnerabilities of Kyocera printers in this 28-minute conference talk from the Hack In The Box Security Conference. Dive deep into the world of printer security, uncovering multiple high-risk vulnerabilities that affect almost all Kyocera devices. Learn about remote DoS attacks, arbitrary file reading, password leakage, and even pre-auth remote code execution. Discover how these vulnerabilities can be exploited to infiltrate office networks and monitor confidential documents using native printer functions. Gain insights from security researchers Yue Liu, Juyang Gao, and Minghang Shen as they demonstrate real-world attacks and discuss the implications for both modern and older Kyocera printer models still in use. Understand the unique security challenges posed by printers in daily life and their attractiveness as targets for APT groups.
Syllabus
#HITB2022SIN #COMMSEC Cracking Kyocera Printers - Yue Liu and Juyang Gao & Minghang Shen
Taught by
Hack In The Box Security Conference