Vulnerability Exposes Over 750 Models to Botnet Attacks

Vulnerability Exposes Over 750 Models to Botnet Attacks

A newly discovered cybersecurity vulnerability, tracked as CVE-2024-51977, has put more than 750 printer models from major brands including Brother, FUJIFILM, and Toshiba at risk of being hijacked into botnets, according to recent findings from CrowdSec and Rapid7.

Since July 4, 2025, the CrowdSec Network has recorded a widespread scanning and exploitation campaign targeting this vulnerability. These attempts are reportedly being carried out by a combination of opportunistic hackers and more sophisticated threat actors.

The flaw allows unauthenticated remote attackers to extract sensitive information — specifically, the serial number of the printer — from its local storage. That data is then used to generate the printer’s administrator password, opening the door to remote code execution and full device takeover.

Rapid7, which originally disclosed the flaw on June 25, demonstrated how attackers can use this method to begin a broader exploit chain. Once inside, attackers can escalate their access, potentially compromising the wider network connected to the printer.

While some hackers appear focused on breaching corporate networks, a large number of attacks seem to be linked to IoT botnets. These botnets aim to absorb printers into larger networks of infected devices, often used in Distributed Denial of Service (DDoS) attacks.

CrowdSec warns that the inability to fully patch many of the affected printer models means the exploitation campaign is likely to persist — and grow — as botnet operators continue adding vulnerable devices to their networks.

Security experts urge immediate action:

• Apply patches as soon as available. Device-specific instructions can be found in Rapid7’s advisory.
• Block malicious IPs using tools like CrowdSec CTI, which can identify and stop exploit attempts in real-time.
• Deploy Web Application Firewalls (WAFs), such as those provided by CrowdSec, to implement virtual patching and mitigate risk from unpatched devices.

Organizations using affected printers are advised to audit their network exposure, restrict remote access to printing services, and monitor for suspicious activity.

Related:

• Tariffs Threaten Over 1000 US Printing Companies
• Entry-Level 3D Printer Shipments Surge on Tariff Fears
• EU Commission Reveals Gaps in E-Waste Directive
• 3D Printing Market Expected to Quadruple in Years
• Digital Printing Thrives in US & Western Europe

Comment:

Please leave your comment below about the news: Vulnerability Exposes Over 750 Models to Botnet Attacks.