Home » Alerts » For New Printer Models, HP has Disabled FTP and Telnet Access

On 5th of December 2016, HP made an announcement that it will not continue FTP and Telnet access in its new business printer models. By default, FTP and Telnet services will be disabled in all the new HP business printer models that will be shipped now onwards. HP has done so in order to strengthen device security against online breach, remote exploitation and various other cyber-attacks occurring on regular basis.

hp-printer

For long, millions of hardware devices are being shipped with an open Telnet and/or FTP port. Hardware vendors and manufacturers argued over this because as per manufacturers, an open Telnet and/or FTP port may be used for remote device management.

HP took proactive steps because IoT threat landscape pushed it doing so

Now days, there are thousands or more groups that actively work to accomplish cybercrime and similar activities. They look for Internet-connected devices so that they could connect them to botnests. Hence, it is the matter of utmost concern to secure these devices. Hardware vendors have started sensing the errors in their ways as botnests have grown to humongous sizes.

HP is the first one to take a safety step and it released a statement in accordance to that. HP announced that it started the process of closing older, less-secure, less-maintained interfaces including protocols, ports, and cipher suites.  HP did it after NIST (” mentioning FTP and Telnet services) identified devices and their ports older and less-secure.

HP made this change in an effort to secure all its business printers that is a part of the HP Secure MPS (Managed Print Services) program. After analyzing that number of printer hacking incidents are happening at a fast pace, HP set this change in motion.

Firmware update is a better option for older devices as it gives more security to password

To keep such hacks at bay, other change that gives you more security is HP’s November FurtureSmart firmware update. This update includes improved admin password and encryption settings for both existing as well as new HP  Multi-Functional Printers (MFPs) and HP Enterprise printers.

VP & GM, JetAdvantage Solutions at HP, Inc. Ed Wingate said that ” In the wake of weakening firewalls to the growing volume of cyberattacks and sophistication, Networked printers can no longer be overlooked and it is the reason that HP has set a new benchmark in managed print services that is infusing best practices into everything for the security of the devices”. He further said that the company did so in order to enable its customers to stay on top in the existing scenario where endpoint security faces growing challenges at every point.”

It’s nice to notice that a hardware vendor is taking pro-active steps to secure devices so that any dangerous hacking incident cannot take place. Usually, it is observed that companies don’t take such precautionary measure beforehand. They take them after a major incident has happened.