News

HIDE YER PASSWORD — Canon warns printer users to manually wipe Wi-Fi settings before discarding If you thought a factory reset wipes Wi-Fi passwords, you’d be wrong.

Dan Goodin – Aug 1, 2023 11:41 pm UTC EnlargeGetty Images reader comments 63 with

Printer manufacturer Canon is warning that sensitive Wi-Fi settings dont automatically get wiped during resets, so customers should manually delete them before selling, discarding, or getting them repaired to prevent the settings from falling into the wrong hands.

Sensitive information on the Wi-Fi connection settings stored in the memories of inkjet printers (home and office/large format) may not be deleted by the usual initialization process, company officials wrote in an advisory on Monday. They went on to say that manual wiping should occur when your printer may be in the hand of any third party, such as when repairing, lending or disposing the printer.

Like many printers these days, those from Canon connect to networks over Wi-Fi. To do this, users must provide the SSID name, the password preventing unauthorized access to the network, and in some cases, additional information such as Wi-Fi network type, the local network IP address, the MAC address, and network profile.

It would be reasonable to assume that performing a simple factory reset that returns all settings to their defaults would be enough to remove these settings, but Mondays advisory indicated that isnt necessarily the case. In the event this information is exposed, malicious actors could use them to gain unauthorized access to a network hosting a Canon printer.

Instead of relying on the reset function, Canon users must: Reset all settings (Reset settings ?> Reset all) Enable the wireless LAN Reset all settings one more time

For Canon printers without a dedicated reset function, users should: Reset LAN settings Enable the wireless LAN Reset LAN settings one more time

The advisory lists nearly 200 models that are affected. A list of them is available here. reader comments 63 with Dan Goodin Dan Goodin is Senior Security Editor at Ars Technica, where he oversees coverage of malware, computer espionage, botnets, hardware hacking, encryption, and passwords. In his spare time, he enjoys gardening, cooking, and following the independent music scene. Advertisement Channel Ars Technica ← Previous story Related Stories Today on Ars

Articles You May Like

White House and American Airlines will release plane crash victims list
Major US carriers issue travel waivers after deadly midair plane collision
Tech giant reportedly ramps up ad spending on X after cutting investments in major reversal
Tech giant reportedly ramps up ad spending on X after cutting investments in major reversal
White House and American Airlines will release plane crash victims list