Keylogger Found in 475 Hewlett Packard and Compaq Notebooks
Posted by: Timothy Tibbetts on 12/09/2017 12:30 AM
[
Comments
]
HP has released driver updates for 475 notebook models to remove debugging code that an attacker could have used as a keylogger.
The problem registry key is:
HKLM\Software\Synaptics\%ProductName% HKLM\Software\Synaptics\%ProductName%\Default
According to HP:
"A potential security vulnerability has been identified with certain versions of Synaptics touchpad drivers that impact all Synaptics OEM partners. A party would need administrative privileges in order to take advantage of the vulnerability. Neither Synaptics nor HP has access to customer data as a result of this issue."
The list of all affected notebooks can be seen at the HP Support website or look for updates for your model.
Bleeping Computer notes that affected model lines include HP's 25*, mt**, 15*, OMEN, ENVY, Pavilion, Stream, ZBook, EliteBook, and ProBook series, along with several Compaq models.
Update: To clarify, the issue is with the Synaptics driver. This is the driver used for your keyboard and touchpad. The Synaptics reference driver hasn't been updated in years, so this issue is specific to a driver for the affected laptops. You're looking to do a security update from HP or Compaq. We suggest you run the software update or Google your laptop model and number and find the download page for your laptop.
The problem registry key is:
HKLM\Software\Synaptics\%ProductName% HKLM\Software\Synaptics\%ProductName%\Default
According to HP:
"A potential security vulnerability has been identified with certain versions of Synaptics touchpad drivers that impact all Synaptics OEM partners. A party would need administrative privileges in order to take advantage of the vulnerability. Neither Synaptics nor HP has access to customer data as a result of this issue."
The list of all affected notebooks can be seen at the HP Support website or look for updates for your model.
Bleeping Computer notes that affected model lines include HP's 25*, mt**, 15*, OMEN, ENVY, Pavilion, Stream, ZBook, EliteBook, and ProBook series, along with several Compaq models.
Update: To clarify, the issue is with the Synaptics driver. This is the driver used for your keyboard and touchpad. The Synaptics reference driver hasn't been updated in years, so this issue is specific to a driver for the affected laptops. You're looking to do a security update from HP or Compaq. We suggest you run the software update or Google your laptop model and number and find the download page for your laptop.
Comments
