HP warns of infected hardware

By

HP has issued a security notice after USB keys shipped with some of its ProLiant servers were found to have been infected with viruses..


The keys, which come in 256MB and 1GB varieties, are used to help configure the servers on installation.

"A potential security vulnerability has been identified with two types of optional HP USB Floppy Drive Keys intended for use with certain ProLiant servers," reads the advisory.

"This vulnerability could cause a local 'W32.Fakerecy' or 'W32.SillyFDC' virus infection."

The W32.Fakerecy is written primarily for removable drives and was first reported last year. W32.SillyFDC is also adapted for removable drives but can also be used to download more malicious files onto an infected machine.

"This is a worrying security lapse, especially as it comes from a major global brand with huge resources," said John Hawes, technical consultant at Virus Bulletin.

"Production and release procedures at all serious companies should be locked down tight to prevent this kind of thing – if we can't trust the big boys to keep their systems clean, who can we trust?"

It is not known whether the malware got on the drives as part of a targeted attack against HP’s products or if it was accidentally introduced due to problems on the manufacturer's side with infected machines.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
hardwarehpinfectedofsecuritywarns

Sponsored Whitepapers

See everything. Do more.
See everything. Do more.
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Diamond IT Delivers GRC Transformation with Microsoft Purview
Diamond IT Delivers GRC Transformation with Microsoft Purview
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy

Events

Most Read Articles

India's alarm over Chinese spying rocks CCTV makers

India's alarm over Chinese spying rocks CCTV makers
Hackers abuse modified Salesforce app to steal data, extort companies

Hackers abuse modified Salesforce app to steal data, extort companies
Cyber companies hope to untangle weird hacker codenames

Cyber companies hope to untangle weird hacker codenames
Victoria's Secret pulls down website amid security incident

Victoria's Secret pulls down website amid security incident
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?