苹果老虎机

地区:深圳 / 东莞
赛邦条码,为您提供更优质的服务,服务热线400-855-9200
行业新闻/  Industry News
 苹果老虎机 > 资讯中心 > 行业新闻 > 16万台打印机遭入侵,系黑客恶作剧,只为善意提醒?

16万台打印机遭入侵,系黑客恶作剧,只为善意提醒?

最近一段时间,外国媒体报道了一则新闻,很多用户的打印机设备自动打印出了奇怪的图案,虽有网民们纷纷在推特上晒出这些奇怪的图案,其中有ASCII码格式的机器人、电脑、打印机等等,疑似打印机遭到了黑客的入侵,随后一名黑客表示对此事件负责,声明之所以用这种恶作剧的方式,只是想善意的提醒人们,他们的打印机设备存在漏洞,而他入侵的打印机数量竟然超过16万台!

16万台打印机遭入侵,系黑客恶作剧,只为善意提醒?

系黑客恶作剧,只为善意提醒?16万台打印机遭入侵,事情的起因是由于前段时间外国社交网推特上有很多人纷纷晒出自己打印机打印出的照片,说自己的打印机自动打印出了奇怪的图案,甚至还有的留下了Email地址或者推特ID,短时间之内越来越多的网友表示自己的打印机也出现了类似的现象,随后有黑客声明对这件事负责,并表明这仅仅是一个恶作剧,只是想善意的提醒大家:“你们的打印设备机被黑啦,并不安全”。

打印机打印出奇怪的文字和图案

SUIHOU,WAIMEIDUIZHEIQISHIJIANYEZUOLEBAODAO,BINGJIANDANMIAOSHULEHEIKEDERUQINGUOCHENG,TABIANXIELEYIGEJIANDANDEJIAOBEN,SAOMIAOGONGWANGZHONGKEFANGWENDEDAYINJITCPDUANKOU(9100/631/515),ERHOUFAXIANDALIANGKAIFANGDERAW、IPP、LPRFUWU,CHENGGONGRUQINBINGFASONGZIDINGYIDEDAYINRENWU。

我们日常用的网络打印机与计算机之间需要通信的协议才能发送文件到打印机进行打印,RAW、IPP和LPR就是三种不同的通信协议。目前几乎所有的网络打印设备都支持RAW协议,这也是Windows操作系统使用最多的协议,而LPR协议最早为了与Unix 操作系统通信而开发,IPP协议则多见于Linux 和Solaris系统使用。端口号就像是送货的门牌号,当家里有人时送货员敲门才会开门,打印任务再送到门口,这就是所谓的端口监听,也就是说打印机的TCP端口是活动的,RAW协议访问打印机的9100端口,IPP访问631端口,而LPR访问515端口。

三种不同的网络打印协议

ZHEIJIANDAYINJIRUQINSHIJIANDERUQINSILUJIUHENMINGBAILE,HEIKEZHIDAOLENIJIADEMENPAIDIZHIBINGQIEZHIDAONIZAIJIA、JISONGLEEZUOJUDEBAOGUO,ERNISHOUDAOYIHOUDAKAILETA,FAXIANSHIYIGEKONGBUWANOU。ERZUIJINANQUANQUANDAREDEHULIANWANGSHEBEISOUSUOYINQINGshodan.ioSOUSUOTCP 9100DUANKOUKAIFANGDESHEBEI,JIEGUOXIANSHILECHAOGUO13WANTIAOSOUSUO,ERQIEQIZHONGHENDUOSHIHUODONGZHONGDEDAYINJIHUOFUYINJI。

ZHIDAOLEHEIKEDERUQINFANGSHI,NEIMESHIBUSHIBURANGHEIKEZHIDAOYOUJIDIZHIHEMENPAIHAOSHIBUSHIJIUANQUANLENI?YEJIUSHISHUOWANGLUODAYINJIZHIZAINEIWANGSHIYONG、BUSHANGGONGWANGSHIFOUJIUANQUANLENI?DAANSHIFOUDINGDE。

LAIZILUERGAOXIAOLIANMENGDEYANJIURENYUANXITONGDICHENSHULERUQINDAYINJIDEFANGFA,LIYONGDAYINYUYANPostScriptHEPJL(Print Job Language)DELOUDONG,LAIDADAOFEIFADEMUDE;BOHONGLUERDAXUEDEYIPIANYANJIUSHENGLUNWENHAIZHUANMENFENXILESUOWEIPRETDEDAYINJIRUQINGONGJU,LAIYANZHENGRUQINDEZHONGLEIHENANYIDU。FEICHANGYIHANDESHI,ZHEILIANGZHONGCHANGJIANDEDAYINYUYANZAIHENDUODAYINJISHANGZHICHI,BINGQIEYOUYUZUICHUDESHEJIQUEXIAN、ZHEIGELOUDONGHENKENENGYIJINGCUNZAILESHUSHINIANSHIJIAN。

NEIME,DANGDAYINJIJINYONGYUNEIWANGSHIYONGSHI,TABINGBUHUIBIANDEGENGANQUAN,YANJIURENYUANJICHULEFEICHANGWANSHANDERUQINFANGSHI——LIYONGCORS Spoofing(Cross Origin Resource Sharing Spoofing,KUAYUZIYUANGONGXIANGQIZHA)HEXSP(Cross Site Printing,KUAZHANDIANDAYIN)ZUHEDEFANGSHI,FAXIANNEIWANGDAYINJIBINGJINXINGQIPIANXINGDEFANGWEN。

在正常情况下,外部网站、内网用户和打印机三者是互相独立的。外部网站不能够知道内网打印机的任何信息,而在发起攻击的情况下,恶意网站诱导内网用户点击网页、注入恶意脚本,并请求用户浏览器访问内网资源。当用户浏览器对内网的设备来说是可信任的,这时黑客就通过请求的跳转实现了对内网打印机的入侵,也就是所谓的XSP跨站点打印。更进一步地,恶意网站借助打印机PostScript语言的输出命令将打印机数据发回内网用户浏览器,而恶意网站端则模拟一套在TCP 9100端口运行的打印服务,这时内网的打印机数据就转发到恶意网站一端,黑客窃取到了内网打印机的打印数据。并且目前的研究显示,利用多种浏览器的WebRTC功能可以轻松扫描特定网络IP段并获得存在漏洞的打印机IP地址,过去不为人注意的网络打印机,已经变成待宰的羔羊。

CHULERANGDAYINJIDAYINYIGEGUILIAN、DAYINBUMINGLAIYUANDENEIRONGZHIWAI,HEIKERUQINHAIYOUKENENGZUONAXIEXIAODONGZUONI?ZAIYICILINGRENDANYOUDESHI,ZHEIXIEKENENGDECAOZUOBAOKUOCONGFASONGDAYINRENWU、SUNHUAICUNCHUDAOHUOQUDAYINJINEIBUSHUJU、MIMASHENZHIANZHUANGEYICHENGXU、GENGXINWEIZHIGUJIAN。

BIJIAODIJIBIEDEWEIXIEZHURUDUIDAYINJIZUODDoSGONGJI。YOUYUDAYINJISHIDANXIANCHENGCHULIDAYINRENWUDE,GONGJIZHEBAOCHIYUDAYINXIEYIDETONGXINMANGLIUHUOZHERANGDAYINJIZHIXINGSIXUNHUANYIZHICHUYUDAYINZHUANGTAIZHONG,DAYINJIJIUWUFAJIESHOUXINDEDAYINRENWU,YONGHUJIUWUFADAYINCHUDONGXI。RUGUOHEIKEXIANGYAOSUNHUAICUNCHUQIZEXUYAODALIANGSHUJUCHIXUXIERUDAYINJI,ERZHANGSHIJIAN、CHIXUDEXIERUCAOZUOKEXINGXINGJIAODI,YINCIYESHIJIAODIJIBIEDEWEIXIE。JIAOGAOJIBIEDEWEIXIEZEBAOKUODAYINNEIRONGBUHUOHECUANGAI,GONGJIZHEJIEZHUDAYINYUYANDEKONGZHIMINGLINGZAIDAYINJISHANGLIUCUNDAYINNEIRONG、BUHUODAOBENDIHUOZHESHIXIUGAIDAYINNEIRONGZHONGDEMOUGEZIDUAN。YOUQISHIDAYINJIMIWENJIAN、SHANGYEHETONGDEDAYINSHEBEI,YOUKENENGZAOCHENGJIMIXINXIXIELUHUOZHONGDASHANGYESUNSHI。YANZHONGDEWEIXIEZESHIDAYINJIBENSHENCHENGWEIWANGLUOBEIGONGRUDETUPOKOU,TONGYANGJIEZHUDAYINYUYANDEKONGZHIMINGLING,GONGJIZHEFANGWENDAYINJIDENEICUNHUOWENJIANXITONG,ERWANGLUODAYINJIYOUQISHIDUOGONGNENGDAYINJITONGCHANGZUOWEIWENYINZHONGSHUHAICUNCHUYOUDIANZIYOUJIANDIZHI、CHUANZHENDIZHI、WENJIANFUWUQI、YOUJIANFUWUQIDIZHIHEMIMA、SHEBEIYONGHUMINGHEMIMADENGDUOZHONGMINGANXINXI,GONGJIZHEHUOQUDAOZHEIXIEXINXI,JIXUKAIZHANDUIQITANEIWANGSHEBEIDEJIECHI,CISHIWANGLUODAYINJIJIUCHENGWEILETUPOKOU。

ZUIZHIMINGDESHIGONGJIZHEYOUKENENGZHIJIESHENGJIDAYINJIGUJIANHUOZAIDAYINJISHANGANZHUANGRUANJIANBAO。YOUYUZUICHUDAYINSHEBEIJINYONGBINGKOUHUOUSBJIEKOU,YINCIDAYINJIDECAOZUOXITONGHEDAYINYUYANJIHUMEIYOUQUANXIANFENJIKAOLV,ERDAOLEWANGLUOSHANG,GONGJIZHEKEYIQINGYIHUODEGAOJIBIEQUANXIAN,JIUXIANGSHIANZHUOSHOUJILIDEROOTQUANXIAN。MUQIANDAYINJIGUJIANDEZHENGDANGXINGCAIYONGSHIBIEMALAIYANZHENG,ERDISANFANGRUANJIANZEYOUCHANGSHANGYANGERENZHENGDEKAIFAZHEHEKAIFAHUANJINGLAIWANCHENG,YIJIGECHANGSHANGWEIGONGKAIDEDAIMARENZHENGXITONGBAOZHENGDAYINJIRUANJIANBAODEZHENGDANGXING。ZHEIXIECUOSHIZAIHENDACHENGDUSHANGBIMIANLEEYIDEGUJIANHUORUANJIANBAOBEIANZHUANGDAODAYINJISHANG,RANERQUANXIANGUANLIDEXIANTIANQUEXIANRENGRANRANGDAYINJIDEDICENGXITONGBAOLUZAIWAI,BUPAICHUWEILAIZAOYUXINDEGONGJIFANGSHIDEKENENGXING。

KEYIKANCHU,WANGLUODAYINJIYIJINGSHIQIYEWANGLUOHUANJINGZHONGBIJIAOBORUODEHUANJIE,YISHOUDAORUQIN、XIELUMINGANXINXI。YANJIURENYUANDUIDAYINSHEBEIDEANQUANXINGXIANZHUANGZUOLEFENXI,JICHULEYIXIEYINGDUIDEBANFA,QIZHONGYOUKEQUZHICHU、YEYOUBUKEQUZHICHU。

220Xi4 高性能条码、标签打印机

SHOUXIANDAYINSHEBEICHANGSHANGZAIDAYINJIDANSHENGZHICHUWEIDAYINYUYANSUOZUODESHEJI,ANQUANXINGYIJINGBUNENGMANZUJINTIANFUZADEWANGLUOHUANJINGYAOQIU,ZHONGXIEQUANXINDEDAYINYUYANSIHUYIJINGBUKENENG,ZAIDAYINJISHANGYINRUANQUANJIZHIYEXUSHIKEXINGDEBANFA,HUIPUYIJINGTUICHUXINDEANQUANDAYINJI,YOUJIHUIWOMENZAIXIANGXIJIEXIZHEIXIEANQUANJIZHIDEZUOYONG。QICI,ITGUANLIRENYUANJIANGDAYINSHEBEIDANDUHUAFENVLAN、CAIYONGZHUANYONGDAYINFUWUQIFENFAZUOYEBINGJIANLIFANGHUOQIANG,NENGGOUTISHENGDAYINJIDEANQUANXING,BUGUOZHEIZHONGMINGXIANXUYAOEWAIZENGJIATOUZIDEFANGSHI,ZHONGGUOGUONEIQIYEJIENADUBINGBUHUIHENGAO。MUQIANKEXINGDE,JIUSHIWEIWANGLUODAYINJISHEZHIYONGHUMIMA、GUANLIYUANMIMA、DAYINRENWUPINMA,BINGGUANBIYONGBUDAODEWANGLUODUANKOU,JINGUANBUNENGQUEBAODAYINJIANQUAN,RENGRANKEYIWEIHEIKERUQINZHIZAOGENGDUODEZHANGAI。ZAICI,ZAIDAYINJISHIYONGZHECENGMIANSHANG,GONGJUXINGDEBANGONGSHEBEIBINGBUNENGYINQIYUANGONGDEGUANZHU,WOMENRENWEIDUISHIYONGZHEQUNTIWUFAZAITICHUGENGDUODEYAOQIU,LIUYIDAYINJIDEYICHANGZHUANGKUANG。

XIAOBIANZAIshodan.ioSHANGJIANDANSOUSUOTCP 9100DUANKOUSHEBEI,SHIYONGRUQINGONGJUHENKUAIRUQINLEJITAIDAYINJI,QIZHONGYITAISHENZHIMEIYOUYONGHUMIMA、MEIYOUGUANLIYUANMIMA,ZAIGONGWANGSHANGLUOBEN,DAYINANQUANDEXIANZHUANGBURONGLEGUAN。

YANJIURENYUANDEDAYINSHEBEIQUEXIANHUIZONGZAIDAYINSHEBEIGONGJIWEIJIBAIKESHANG,YOUXINGQUSHENRULEJIESHIXIANFANGSHIDEKEYIDIANJILIANJIE。GONGJIGONGJUPRETYESHANGCHUANZAIGithubSHANG。BIZHEWENZHANGDEDABUFENCAIXINLEDAYINGONGJIWEIJIBAIKEDECHENSHU。

最后,这篇文章的用意,是引起IT管理人员和经营者对打印安全的注意,这在过去是长期被忽视的领域,合规性更是无从谈起。而普通人对打印机设备千万不要有其他想法,更不要提实施行动,需知这种网络入侵、窃取信息的行为就是违法犯罪。


上一篇:2026条码打印机市场规模将达逾56亿美元
下一篇:条码打印机分类有哪些?