IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Thousands of printers at risk of denial of service attacks

Attackers can easily manipulate the 9100 port to hijack hardware and steal data, researchers claim

padlock on a binary code background

Researchers have highlighted a trio of potential attacks against printers that could allow denial of service, information theft, or botnet compromise.

The collection of attacks, labeled Printjack, appeared in a paper from researchers Giampaolo Bella and Pietro Biondi at the Universit`a di Catania and Istituto di Informatica e Telematica in Italy.

The attacks all focus on the 9100 port, which printers commonly use to accept print jobs. Printers frequently expose this port to the open internet, which can render them vulnerable to attack, the paper warns.

"Raw port 9100 printing is massively used worldwide. For example, we observe that it is the default print method that the Common UNIX Printing System (CUPS) leverages, and that CUPS is vastly used in modern Linux distributions and Apple systems," it said. However, it noted that this didn't seem to be the case on Windows systems.

The researchers noted three possible attacks. These include a 'paper DoS', in which attackers send print jobs in an infinite loop until a printer exhausts its paper supply. This attack is effectively a modern version of an old hack in which attackers send an endless loop of paper to a fax machine. The researchers successfully tested the hack on 20 of their own printers using a 12-line Python script.

Another attack threatens the confidentiality of data sent to a printer across the network. The researchers used the Ettercap network traffic interception suite, along with the Wireshark network traffic analysis tool to analyze printer jobs sent across a network, and found that they were sent in plain text. They speculated that an intruder could launch a man in the middle (MITM) attack and intercept that job, potentially putting confidential information at risk.

Related Resource

The top three IT pains of the new reality and how to solve them

Driving more resiliency with unified operations and service management

Man at his computer next to title card - whitepaper from ServiceNowFree download

"Because printing is still common practice today, we cannot fully justify why data stored on a server would normally be protected and, by contrast, data sent off for printing would not," they said. They added that this might put companies in violation of the GDPR privacy regulation.

Finally, Bella and Biondi note the possibility of a botnet-style attack in which printers could be compromised en masse, although they did not test this attack in practice. Instead, they pointed to several known vulnerabilities that allow remote code execution.

Using the Shodan IoT search engine to search for printers with open 9100 ports, researchers found the largest percentage in Germany, with the second biggest collection in Russia, closely followed by France.

Featured Resources

Activation playbook: Deliver data that powers impactful, game-changing campaigns

Bringing together data and technology to drive better business outcomes

Free Download

In unpredictable times, a data strategy is key

Data processes are crucial to guide decisions and drive business growth

Free Download

Achieving resiliency with Everything-as-a-Service (XAAS)

Transforming the enterprise IT landscape

Free Download

What is contextual analytics?

Creating more customer value in HR software applications

Free Download

Recommended

Epson Photo HD XP-15000 review: Small footprint, small price, big prints
peripherals

Epson Photo HD XP-15000 review: Small footprint, small price, big prints

23 May 2022
Kyocera Ecosys FS-1061DN review: Affordable, but uninspiring
peripherals

Kyocera Ecosys FS-1061DN review: Affordable, but uninspiring

17 May 2022
Oki B432dn review: A masterful mono laser
peripherals

Oki B432dn review: A masterful mono laser

16 May 2022
How to buy the right printer for your business
Hardware

How to buy the right printer for your business

13 May 2022

Most Popular

16 ways to speed up your laptop
Laptops

16 ways to speed up your laptop

13 May 2022
(ISC)2 launches free scheme to get 100,000 UK citizens into cyber security
Careers & training

(ISC)2 launches free scheme to get 100,000 UK citizens into cyber security

17 May 2022
Preparing for the 3G sunset
Network & Internet

Preparing for the 3G sunset

18 May 2022