Canon is issuing a crucial alert to all users of home, office, and large format inkjet printers. During the initialisation process, the Wi-Fi connection settings stored in the devices' memories are not being properly wiped, as they should be.
This oversight poses a serious security and privacy risk for users, as it could potentially grant unauthorised access to their data. Whether in the hands of repair technicians, temporary users, or future buyers of the devices, this flaw may divulge sensitive Wi-Fi network connection details, calling for immediate attention to ensure protection against potential breaches.
The data stored in a Canon printer is model and configuration-dependent, encompassing vital details such as the network SSID, password, network type (WPA3, WEP, etc.), assigned IP address, MAC address, and network profile.
The potential exposure of this sensitive Wi-Fi connection information could facilitate unauthorised access to a Canon printer user's network by malicious third parties.
Subsequently, the attacker gains the ability to exploit shared resources, pilfer data, or initiate other privacy-infringing attacks, utilising additional vulnerabilities.
Ensuring security
Canon has identified an extensive list of impacted printers, comprising 196 models from the E, G, GX, iB, iP, MB, MG, MX, PRO, TR, TS, and XK series. To help users determine if their printer models are affected by the data retention issue, the vendor has published a separate document for reference.
To safeguard their devices, Canon advises owners of impacted printers to proactively wipe their Wi-Fi settings before any third-party gains access. This situation may arise during device repairs or when transferring ownership by giving or selling the printer to another person.
For those with the 'Reset all' function available in their settings menu, Canon provides the following instructions:
Reset all settings (Reset settings -> Reset all)
Enable the wireless LAN
Reset all settings one more time
However, for models lacking the 'Reset all' function, users should follow these alternative steps:
Reset LAN settings
Enable the wireless LAN
Reset LAN settings one more time
For individuals whose printer model does not fall under either of these sets of instructions, Canon recommends consulting the operation manual that came with the specific device. This will help ensure users take appropriate actions to maintain their Wi-Fi security and privacy.
An additional effective security measure is to segregate printers onto networks separate from critical assets. This approach ensures that even if one network gets compromised, attackers won't have access to vital devices.
It is crucial to apply firmware updates promptly for your printer model. Additionally, disabling services like cloud printing or remote management interfaces when unnecessary can further bolster security.
