Hacker News new | comments | show | ask | jobs | submit login
Samsung Printer firmware contains a backdoor administrator account (cert.org)
61 points by Garbage 1641 days ago | hide | past | web | 12 comments | favorite

Reminds me of the Cold War when the CIA planted camera's inside XEROX copiers and was stealing everyone’s secrets for decades. http://www.editinternational.com/read.php?id=47ddf19823b89

When I read about that kind of backdoors it makes me wonder how nobody ever ends up in prison for it.

Normally, no one goes to jail because companies is not viewed to have mens rea, ie, an intent to break the law. The company only want to earn money and safe guard their revenues.

The only option left if you ask the police/state, is to make a civil case out of it and sue the company. Sadly, civil court has rarely any effect on the market, which can clearly be seen by the sony rootkit controversy. The EU might enforce some industry regulations in regard to backdoors/spyware, but I would not count on it. To enforce such regulations, they would need to prevent importation of devices that break said law, and that's a rather large step to take politically.

Because there is no law that says 'if you as a manufacturer of some device install a backdoor then that will come with a fine of 'x' or a jail sentence of 'y''.

If you feel that this sort of thing warrants a jail term then you should lobby for it to become a crime. As it is manufacturers are completely in the clear if they do things like this, the only way to put pressure on them is to vote with your feet.

I think it would fall under some sort of wire fraud or hacking, except that you probably have to agree to it in the EULA so it was "allowed".

You can not sign away legal protection in a EULA. This is why EULA's normally say's something like "we forbid everything, and leave you with no rights what so ever, except what ever rights the law guaranties that you have".

Accessing the back door by a non-authorized party would probably be criminal.

There is a big difference between leaving a back door open through incompetence versus leaving it open with the intention of breaching your customers networks.

Will Samsung receive more stringent investigations and sanctions than Huawei had, given that Samsung is caught red-handed?

I don't know why people buy Samsung stuff. As pg once said, they make everything look like a microwave.

Too cook your ears I guess ;)

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | DMCA | Apply to YC | Contact