Skip to main content

Hijacking Printers For Spamming

posted onJanuary 11, 2008
by hitbsecnews

Having prospered by passing the costs of their operations onto others, spammers have a new way to vex computer users: printer hijacking.

Building on the concept of cross-site scripting, whereby an attacker can inject malicious code in Web pages viewed by others, security researcher Aaron Weaver has demonstrated how an attacker can inject spam messages into a Web site visitor's printer.

Weaver's research is available in a paper published online. It describes how the attack could be initiated by creating a hidden iframe -- a block of code inserted into a Web page and often served from a different domain than the Web page -- and a Web form that submits the spam message to the printer. An attacker could also send the spam message as a fax, if the printer has fax capabilities.

Source

Tags

Spam

You May Also Like

Recent News

Tuesday, November 19th

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th