Security Market Segment LS
Wednesday, 24 October 2012 09:09

Xerox and McAfee team to protect MFDs from malware


Attacks on or using networked printers or multifunction devices are nothing new, but the growth in malware is affecting embedded systems including those used in such devices, according to Tom Moore, McAfee's vice president of embedded security.

While Xerox (Fuji Xerox in Australai) has been taking various steps to protect its products, Rick Dastin, president of the company's office and solutions business group, said these higher walls were not enough, and suggested "a barking dog" was called for.

So Xerox will add McAfee Embedded Control to its devices, starting with on WorkCentre and ColorQube models in the first quarter of 2013. "The first thing it does is bark - it barks loud," he said.

One issue is that most people don't expect printers to be vulnerable to malware. Embedding the security software into the controller means users and administrators do not need to worry about it.

McAfee Embedded Control works by whitelisting the software that is supposed to run on the device and blocking everything else.

So even if malicious code arrives on the device, it won't be executed, Mr Moore said, making this a very effected way of securing devices.

McAfee Embedded Control reports any unexpected activity to McAfee's ePO, to the Xerox management tools, or (especially relevant to smaller organisations) via email. Potential customers and channels partners had reacted positively to this concept, he added.

There are a variety of malware vectors for printers, including the page description language data stream (ie, a malicious print job), email sent to the device, attacks on the built-in web server (which is intended for device management), replacing the hard drive with one containing malware, or putting the malware onto a USB drive which is subsequently plugged into the computer.

Mr Dastin said there are probably more entry points on a MFD than there are on a PC.

Malware functionality includes exfiltrating copies of print or scan jobs, and using the MFD to launch an attack from inside the organisation (eg, SQL injection attacks).

The most serious threats in this regard are criminal enterprises and state actors, Mr Dastin suggested.

Disclosure: The writer travelled to Las Vegas as the guest of McAfee.

WEBINAR event: IT Alerting Best Practices 27 MAY 2PM AEST

LogicMonitor, the cloud-based IT infrastructure monitoring and intelligence platform, is hosting an online event at 2PM on May 27th aimed at educating IT administrators, managers and leaders about IT and network alerts.

This free webinar will share best practices for setting network alerts, negating alert fatigue, optimising an alerting strategy and proactive monitoring.

The event will start at 2pm AEST. Topics will include:

- Setting alert routing and thresholds

- Avoiding alert and email overload

- Learning from missed alerts

- Managing downtime effectively

The webinar will run for approximately one hour. Recordings will be made available to anyone who registers but cannot make the live event.



Security requirements such as confidentiality, integrity and authentication have become mandatory in most industries.

Data encryption methods previously used only by military and intelligence services have become common practice in all data transfer networks across all platforms, in all industries where information is sensitive and vital (financial and government institutions, critical infrastructure, data centres, and service providers).

Get the full details on Layer-1 encryption solutions straight from PacketLight’s optical networks experts.

This white paper titled, “When 1% of the Light Equals 100% of the Information” is a must read for anyone within the fiber optics, cybersecurity or related industry sectors.

To access click Download here.


Stephen Withers

joomla visitors

Stephen Withers is one of Australia¹s most experienced IT journalists, having begun his career in the days of 8-bit 'microcomputers'. He covers the gamut from gadgets to enterprise systems. In previous lives he has been an academic, a systems programmer, an IT support manager, and an online services manager. Stephen holds an honours degree in Management Sciences and a PhD in Industrial and Business Studies.



Recent Comments