Samsung Security Advisory on SNMP
Samsung has issued a security advisory and an optional firmware update for all current Samsung networked laser printers and multifunction devices to enhance Simple Network Management Protocol (SNMP) security. This advisory and firmware update is being issued to address the November 26, 2012, vulnerability report by the U.S. Computer Emergency Readiness Team (US-CERT).
Samsung would like to assure our customers that the issue reported by US-CERT presents a minimal risk and that for a majority of customers no action is required to enhance SNMP security.
1. Corporate, small business, and home office users whose networked printers sit behind a firewall or secure router: Updating firmware is not required. Users may continue to utilize SNMPv1 / v2.
2. Users of USB printers not utilizing SNMP: No action is required.
3. Users of networked printers without a firewall, secure router, or those with other specific security concerns: Samsung recommends disabling SNMPv1 / v2, and instead using the secure SNMPv3 mode. It should be noted that customers using SNMPv3 only may experience some limitations to network functionality, or incompatibility with customer applications. Customers who have disabled SNMP altogether, or are using the secure SNMPv3 mode, do not need to update firmware.
4. Customers who still have security concerns and wish to install the optional firmware update: Please contact our support team at the numbers below to obtain the firmware update for your model. The update is now available for most currently sold models, with further models being added in the coming days. Firmware updates for all current and past models will be provided by the end of December 2012. Our support team can provide details on the correct installation of the firmware update.*
Samsung is committed to maintaining the highest standards of information security and takes these concerns very seriously. To find out more, please read our white paper on printer security here or contact customer support.
Samsung Support Contacts:
Business Customers: 1-800-749-0205
Samsung Security Advisory FAQ
1. What is SNMP?
The Simple Network Management Protocol (SNMP) is an application-layer protocol that facilitates the exchange of management information between network devices. It is part of the TCP / IP suite. SNMP enables network administrators to manage network performance, find and solve network problems, and plan for network growth.
SNMPv3 is SNMPv2 plus security and administration. SNMPv3 security features support authentication and encryption. The SNMPv3 used on Samsung MFPs can support authentication by using the MD5 or SHA algorithm and can support one account to read and write. Samsung MFPs with SNMPv3 support the DES encryption algorithm.
2. What is the risk if I continue to use existing firmware with SNMPv1 / v2?
The security risk posed by continued use of the existing firmware with SNMPv1 / v2 is minimal. For the majority of users, networked printer devices operate behind a firewall or secure router.
It should be noted that in all instances, stored print and scan jobs remain secure and data stored in device memory is automatically encrypted. All data is cleared automatically by the device after completing the print, scan, fax, and copy operations. All data stored in the device’s hard drive will be automatically encrypted, including print jobs. In no case can other network-connected servers, computers, or peripherals be accessed through the printer.
3. How do I activate SNMPv3?
Please find instructions here to guide you through the process. Please contact Samsung support for additional directions at 1-800-749-0205 for business customers and 1-800-Samsung for consumers.
*This firmware update is provided to you “as is,” and you use the firmware at your own risk. Samsung makes no warranties as to the performance, merchantability, fitness for a particular purpose, or any other warranties whether expressed or implied.