Dislikes: 0
Has anyone seen this about hacking hundreds of thousands Kon/Min MFP's. At first I thought it was limited to just the C3300i & C3350i but after reading the rest of article it seems many models are affected?
Hundreds of Thousands of Konica Printers Vulnerable to Hacking via Physical Access | SecurityWeek.Com
Last edited by copyman; 05-13-2022 at 03:59 PM.
First i have heard of this. I am KM and they have said nothing
2019 is i series early days they fixed a lot of vulnerabilities after that through firmware updates.
I think this article may be biased a bit.
A tree is known by its fruit, a man by his deeds. A good deed is never lost, he who sows courtesy, reaps friendship, and he who plants kindness gathers love.
Blessed are they who can laugh at themselves, for they shall never cease to be amused.
I don't reply to private messages from end users.
Damn, this is pretty much the past 10 years of their products. I can only image some of these older models still being un-patched.....Originally Posted by tsbservice
Model name Affected FW version CVE-ID bizhub 227, 287, 367, 308, 368, 458, 558, 758, 808, 958, PRO958, 308e, 368e, 458e, 558e, 658e, 4752, 4052, C227, C287, C258, C308, C368, C458, C558, C658, C659, C759, C3351, C3851, C3851FS G00-U8 or later CVE-2022-29586 CVE-2022-29587 bizhub C450i, C550i, C650i G00-73 or later CVE-2022-29586 CVE-2022-29587 bizhub C250i, C300i, C360i, C4050i, C3350i, C4000i, C3300i G00-73 or later CVE-2022-29586 CVE-2022-29587 bizhub C250i, C300i, C360i, C4050i, C3350i, C4000i, C3300i Gxx-4A or prior CVE-2022-29586 CVE-2022-29587 CVE-2022-29588 bizhub 306i, 226i, 246i, 266i, C3320i Gxx-4A or prior CVE-2022-29588 CVE-2022-29587 CVE-2022-29586
Failing to plan is planning to fail!!!
Konica just sent out an email with regards to 2 updated bulletins within the last 5 minutes that discuss this. I'll attach below. Covers nearly all the 7, 8 9, and i models it would seem. Probably covers older models as well, but how likely is it they will provide updates for the older stuff...
TB12007.pdf
TB11954.pdf
A Ricoh Service Tech for 7 year. A Konica Minolta Service Tech for 7 years. Now, KM service manager for 3 years.
My Ricoh knowledge is slowly dwindling away at this point. Many things have been lost to time...
What are the chances that someone comes to your site (bring a keyboard) hack your MFP and nobody notice anything.
Many machines have external keyboards connected..User that need to rename docs usually prefer this over the electronic keyboard.
Funny how K/M says nothing about this until it's made public. Like I've posted here before the Jap's will not admit to a problem until they have a solution.
I still have customers demanding the HDD from old machine when they upgrade. I tell them I will format the HDD in front of them and a few still want me to remove and hand them the HDD. This paranoia is from years ago when there was a few TV news shows saying that companies info is stored on copiers HDD.
i can asure you that these posts are not biased. Maybe you're right with the firmware but there are still a lot of vulnerabilities that do not even require physical access... KM still denies those issues though.
Thanks: 
Likes: 
Reply With Quote
Bookmarks