His claims are quickly debunked in the article, as the true reason is, obviously, protecting their IP and subscription model

  • mozz@mbin.grits.dev
    link
    fedilink
    arrow-up
    16
    ·
    10 months ago

    It wasn’t quite that; there was a buffer overflow in the code that was talking to the ink cartridge. So a malicious ink cartridge could in fact take over your printer. Of course, a web page you visit could in fact take over your browser and that’s a much more realistic threat vector, and somehow we’ve survived all this time without limiting ourselves to HP-sponsored and security-assured web pages with a healthy cut of profit going to HP from every visit.

    • Overzeetop@beehaw.org
      link
      fedilink
      arrow-up
      15
      ·
      10 months ago

      in the code that was talking to the ink cartridge.

      So the flaw is in the printer or driver, and HP has just admitted to shipping an insecure, nay negligently dangerous, product to consumers?

      • Banzai51
        link
        fedilink
        English
        arrow-up
        5
        ·
        10 months ago

        In the 90s, they shipped recovery CDs with viruses baked in. Knowingly shipping destructive code and hardware is kinda HP’s thing.

          • Banzai51
            link
            fedilink
            English
            arrow-up
            1
            ·
            10 months ago

            This was 95ish. We were under strict orders not to confirm it. HP worked hard to keep it under wraps. Now layer on the fact the web was still in its infancy, you likely won’t find a whole lot about it.

      • Bitrot@lemmy.sdf.org
        link
        fedilink
        English
        arrow-up
        4
        ·
        10 months ago

        They all have flaws, that’s ostensibly why they also provide firmware updates. I think it’s likely their software team even fixed the original flaw while their make more money team extended it into locking down products even more.