Monday, 30 June 2025
30 C
Singapore
28.4 C
Thailand
19.9 C
Indonesia
28.4 C
Philippines

Hundreds of Brother printers have a serious flaw you can’t entirely fix

Hundreds of Brother printers have a flaw that lets hackers guess your admin password and one critical issue can't be fixed with updates.

If you’re using a Brother printer at home or work, your device could be at risk from a major security flaw that cannot be fixed entirely. Security firm Rapid7 has discovered eight new vulnerabilities affecting 689 different Brother printer models. One of these flaws is especially dangerous, as it allows hackers to work out the printer’s default admin password by simply knowing the device’s serial number.

This flaw has been logged as CVE-2024-51978 in the National Vulnerability Database and has received a 9.8 out of 10 score on the CVSS scale, marking it as “Critical.” If an attacker can get hold of your printer’s serial number, they could generate its default password, gain full access to the device, and then take further action using the other seven vulnerabilities found by Rapid7.

How this vulnerability could affect you

If your printer still uses the default admin password it came with, you’re at the greatest risk. Once inside, an attacker could retrieve sensitive data from your printer, crash it remotely, or connect it to other devices on your network. They could also send their own HTTP requests through your printer or gain access to saved passwords for other connected services.

While most of these problems can be resolved through firmware updates, the most serious flaw, CVE-2024-51978, cannot be fixed this way. Brother has confirmed that this particular issue can only be addressed through changes made during the production of future models. For the models already on the market, Brother recommends users take immediate action by manually changing the admin password via the printer’s Web-Based Management menu.

This is not a problem exclusive to Brother printers. The same report revealed that 59 printer models from other major brands — including Fujifilm, Toshiba, Ricoh, and Konica Minolta — could also be affected. However, not all printers share every vulnerability, and the impact varies between models.

What you should do right now

If you have a Brother printer, the most important step you can take is to check whether your model is one of those affected. Brother’s support page includes full details and a list of impacted devices. You should also ensure your printer’s firmware is current, as updates can patch seven vulnerabilities.

Even more crucial is changing your default password if you haven’t done so already. You can access your printer’s settings through its Web-Based Management feature. Brother is urging users to take this step, as it significantly reduces the risk of remote access. Leaving the default password in place makes it far easier for hackers to break in and control your printer.

This discovery powerfully reminds us of the importance of changing default passwords on all devices—not just printers. Factory-set credentials are often widely known and can be exploited in seconds, whether it’s your router, webcam, or smart home device. Taking a few minutes to update them could protect you from a serious data breach or cyberattack.

While Brother is working on hardware-level fixes for future printers, you can protect your current device today by making these vital changes.

Hot this week

WhatsApp now lets you use AI to summarise your private messages

WhatsApp now uses Meta AI to summarise your unread private messages, helping you catch up on chats quickly while keeping your privacy intact.

AWS opens innovation hub in Singapore to drive cloud and AI adoption across Asia Pacific

AWS opens first Innovation Hub in Asia Pacific to accelerate digital transformation with cloud and AI for regional businesses.

Kyndryl opens ASEAN AI Innovation Lab in Singapore

Kyndryl opens ASEAN AI Innovation Lab in Singapore to accelerate responsible AI adoption across Southeast Asia with support from Google Cloud and DISG.

Runway moves into gaming with new AI platform Game Worlds

Runway launches Game Worlds, an AI platform aiming to reshape game creation and expand its success from film into the gaming industry.

Meta slammed by Oversight Board for ‘incoherent’ handling of AI-manipulated content

Meta is under fire again as its Oversight Board slams its weak AI content rules as 'incoherent and unjustifiable'.

Dubai gears up for air taxi revolution

Joby delivers its first air taxi to Dubai, moving closer to a 2026 launch and signalling real progress in the future of flying taxis.

Anker recalls five more power banks over fire risk concerns

Anker is recalling five more power banks due to fire risks and urges users to stop using them immediately and seek a free replacement or gift card.

Apple plans to launch 7 headsets and smart glasses by 2028, analyst says

Apple is planning to launch at least seven headsets and glasses by 2028, including smart glasses, a Vision Air, and updated Vision Pro models.

Cheapest SIM-only plans in Singapore 2025: Flexible, contract-free mobile data

Compare the cheapest SIM-only plans in Singapore for 2025, with up to 1TB data, 5G access, roaming, and no-contract options from S$8/month.

Related Articles

Popular Categories