https://portswigger.net/daily-swig/amp/xerox-legal-threat-reportedly-silences-researcher-at-infiltrate-security-conference
5 replies (most recent on top)
Haha, this has been a Xerox problem for almost 20 years. The products are totally exposed by way of their OS. We had Nuvera system hijacked and hosting a p–nsite in the background 7 years ago. To this day nothing has changed to prevent that for happening again.
“freshers” - many won’t get that reference but should try to. One of so many examples of how the offshoring business model often benefits the outsourcer to the detriment of the company they are supposed to be supporting. Rampant at HCL and Wipro.
Makes it kind of a tough sell on the “our devices are secure” front, eh? Wondering when US DoD (eg Navy) will wake up. Can anyone spell “on device” translation being done by a foreign adversary who gets to see the docs? But that’s for a future disclosure.
“Factory Produced Remanufactured Model”
"Freshers"