HP = Hoi Polloi, Hire Purchase, Hickey Puters....
FYI: If you're running HP Device Manager, anyone on your network can get admin on your server via backdoor
HP Device Manager, software that allows IT administrators to manage HP Thin Client devices, comes with a backdoor database user account that undermines network security, a UK-based consultant has warned. Nicky Bloor, founder of Cognitous Cyber Security, reports that an HP Inc programmer appears to have set up an insecure user …
COMMENTS
-
-
-
Wednesday 30th September 2020 20:46 GMT Mage
Re: I'll give them 1 out of 10
Or letmein, the default on Sage Line 50 that people rarely changed.
How hard is to have a 1st use screen where it explains about the address book kept in the safe that's used for passwords and prompts for a new password and then run a cracking tool rather than just count the number and types of characters?
Oh, and keep an off site copy securely too.
One company I know used a spreadsheet saved in Office 365 for ALL the company passwords!
Paper is more secure and can be more easily secured.
-
-
-
Wednesday 30th September 2020 17:24 GMT Mage
One solution
Don't install HP drivers or software? I'm wary after the driver that LATER disabled working 3rd party toner cartridges.
I remember when HP was really good. I think sometime before they bought Compaq and realised how much money ink could make. And they did real test gear in those days too.
What does this HP Device Manager actually do?
-
Saturday 3rd October 2020 00:55 GMT Anonymous Coward
Re: One solution
"What does this HP Device Manager actually do?"
From the HP link in the article:
"Make it easy for your IT admins to remotely deploy, update, and manage thousands of HP Thin Clients from anywhere1 through a single console with HP Device Manager, a tool included with HP Thin Clients at no extra cost."
-